Denial of Service Vulnerability in Netgear WN802T Wi-Fi Access Point
CVE-2008-1197

Currently unrated

Key Information:

Vendor: Netgear
Status: Wn802t; 88w8361w-bem1
Vendor: CVE Published:; 5 September 2008

Summary

The Marvell driver for the Netgear WN802T Wi-Fi access point version 1.3.16 contains a vulnerability that improperly handles SSID information in an association request. This flaw permits remote authenticated users to induce a Denial of Service, leading to device reboots or hangs, and may open potential avenues for arbitrary code execution through a crafted 'Null SSID'. The issue arises from a lack of adequate parsing of the SSID information element, emphasizing the need for prompt remediation to mitigate the risk associated with this vulnerability.

References

http://secunia.com/advisories/31770

third-party-advisoryx_refsource_SECUNIA

http://securityreason.com/securityalert/4215

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/archive/1/495983/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Sep 5, 2008
Vulnerability Reserved
Mar 6, 2008