Integer Overflow Vulnerability in Intel WiMAX Network Service
CVE-2013-4219

Currently unrated

Key Information:

Vendor: Intel
Status: Wimax Network Service
Vendor: CVE Published:; 25 August 2013

Summary

The Intel WiMAX Network Service, specifically version 1.5.2 for Intel Wireless WiMAX Connection 2400 devices, is affected by multiple integer overflow vulnerabilities. These weaknesses allow an attacker to exploit crafted Protocol Data Units (PDUs) that may lead to a denial of service by crashing the component. In a worse scenario, it could enable arbitrary code execution due to a heap-based buffer overflow in critical files like L5SocketsDispatcher.c and L5Connector.c. Attackers can remotely initiate this threat whenever they have network access, thereby increasing the urgency for users to mitigate the risk.

References

https://bugzilla.redhat.com/show_bug.cgi?id=911129

x_refsource_CONFIRM

http://www.openwall.com/lists/oss-security/2013/08/08/17

mailing-listx_refsource_MLIST

Timeline

Vulnerability published
Aug 25, 2013
Vulnerability Reserved
Jun 12, 2013