Vulnerability Name: | CVE-2014-8324 (CCN-98461) | ||||||||||||||||||||||||||||||||||||
Assigned: | 2014-10-20 | ||||||||||||||||||||||||||||||||||||
Published: | 2014-10-20 | ||||||||||||||||||||||||||||||||||||
Updated: | 2018-10-09 | ||||||||||||||||||||||||||||||||||||
Summary: | network.c in Aircrack-ng before 1.2 Beta 3 allows remote attackers to cause a denial of service (segmentation fault) via a response with a crafted length parameter. | ||||||||||||||||||||||||||||||||||||
CVSS v3 Severity: | 7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
| ||||||||||||||||||||||||||||||||||||
CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P) 3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
| ||||||||||||||||||||||||||||||||||||
Vulnerability Type: | CWE-20 | ||||||||||||||||||||||||||||||||||||
Vulnerability Consequences: | Denial of Service | ||||||||||||||||||||||||||||||||||||
References: | Source: CONFIRM Type: Issue Tracking, Vendor Advisory http://aircrack-ng.blogspot.com/2014/10/aircrack-ng-12-release-candidate-1.html Source: CCN Type: BugTraq Mailing List, Sat Nov 01 2014 - 06:41:09 CDT "Aircrack-ng 1.2 Beta 3" multiple vulnerabilities Source: MITRE Type: CNA CVE-2014-8324 Source: FEDORA Type: Third Party Advisory FEDORA-2014-14283 Source: FEDORA Type: Third Party Advisory FEDORA-2014-14247 Source: FEDORA Type: Third Party Advisory FEDORA-2014-14233 Source: MISC Type: Patch, Third Party Advisory, VDB Entry http://packetstormsecurity.com/files/128943/Aircrack-ng-1.2-Beta-3-DoS-Code-Execution.html Source: GENTOO Type: Third Party Advisory GLSA-201411-08 Source: CCN Type: Aircrack-ng Web site Aircrack-ng Source: BUGTRAQ Type: UNKNOWN 20141101 Aircrack-ng 1.2 Beta 3" multiple vulnerabilities Source: CCN Type: BID-71342 Aircrack-ng 'network.c' Denial of Service Vulnerability Source: CONFIRM Type: Issue Tracking, Patch, Third Party Advisory https://bugzilla.redhat.com/show_bug.cgi?id=1159812 Source: XF Type: UNKNOWN aircrackng-cve20148324-dos(98461) Source: CONFIRM Type: Patch, Third Party Advisory https://github.com/aircrack-ng/aircrack-ng/commit/88702a3ce4c28a973bf69023cd0312f412f6193e | ||||||||||||||||||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||||||||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||||||
BACK |