FKIE_CVE-2006-1385

Vulnerability from fkie_nvd - Published: 2006-03-24 11:02 - Updated: 2025-04-03 01:03
Severity ?
Summary
Stack-based buffer overflow in the parseTaggedData function in WavePacket.mm in KisMAC R54 through R73p allows remote attackers to execute arbitrary code via multiple SSIDs in a Cisco vendor tag in a 802.11 management frame.
References
cve@mitre.orghttp://kismac.de/_trac/changeset/113
cve@mitre.orghttp://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044323.html
cve@mitre.orghttp://secunia.com/advisories/19354Vendor Advisory
cve@mitre.orghttp://securityreason.com/securityalert/609
cve@mitre.orghttp://www.hardened-php.net/advisory_032006.115.html
cve@mitre.orghttp://www.osvdb.org/24072
cve@mitre.orghttp://www.securityfocus.com/archive/1/428537/100/0/threaded
cve@mitre.orghttp://www.securityfocus.com/bid/17198
cve@mitre.orghttp://www.vupen.com/english/advisories/2006/1070
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/25422
af854a3a-2127-422b-91ae-364da2661108http://kismac.de/_trac/changeset/113
af854a3a-2127-422b-91ae-364da2661108http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044323.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/19354Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/609
af854a3a-2127-422b-91ae-364da2661108http://www.hardened-php.net/advisory_032006.115.html
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/24072
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/428537/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/17198
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2006/1070
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/25422
Impacted products
Vendor Product Version
kismac kismac 0.1a
kismac kismac 0.1b
kismac kismac 0.1c
kismac kismac 0.2a
kismac kismac 0.5d
kismac kismac 0.5d4
kismac kismac 0.10a
kismac kismac 0.11a
kismac kismac 0.12a
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.1a:*:*:*:*:*:*:*",
              "matchCriteriaId": "70682692-C51B-4945-94D2-7C7DBE4C7B08",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.1b:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB7AF074-BA99-4CD3-9852-588C30F45AC5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.1c:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FFF52E8-4206-473E-B360-54B3BA115FB4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.2a:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D098ED9-320A-4942-B9EA-997095B7F12D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.5d:*:*:*:*:*:*:*",
              "matchCriteriaId": "BBC340DD-84D7-4D21-B047-126477E9774C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.5d4:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC95BBD3-CB6F-4036-86C4-3955CB3158F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.10a:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B2574AF-4403-4370-BEEE-6E8204ABC499",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.11a:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CA8156D-4EB7-41C4-B701-6310C66CA5FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:kismac:kismac:0.12a:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5C4D22F-077E-4021-BEF1-2C94830652E1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Stack-based buffer overflow in the parseTaggedData function in WavePacket.mm in KisMAC R54 through R73p allows remote attackers to execute arbitrary code via multiple SSIDs in a Cisco vendor tag in a 802.11 management frame."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer basado en pila en la funci\u00f3n parseTaggedData en WavePacket.mm en KisMAC R54 hasta la versi\u00f3n R73p permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de m\u00faltiples SSIDs en una etiqueta del vendedor Cisco en un marco de gesti\u00f3n 802.11."
    }
  ],
  "evaluatorSolution": "Update to version R73p.",
  "id": "CVE-2006-1385",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "HIGH",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.1,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 4.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2006-03-24T11:02:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://kismac.de/_trac/changeset/113"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044323.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/19354"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securityreason.com/securityalert/609"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.hardened-php.net/advisory_032006.115.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/24072"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/428537/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/17198"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/1070"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25422"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://kismac.de/_trac/changeset/113"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044323.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/19354"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/609"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.hardened-php.net/advisory_032006.115.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/24072"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/428537/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/17198"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/1070"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25422"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.