Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The 802.11 network stack in net80211/ieee80211_input.c in MadWifi before 0.9.3.1 allows remote attackers to cause a denial of service (system hang) via a crafted length field in nested 802.3 Ethernet frames in Fast Frame packets, which results in a NULL pointer dereference.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MadWifi Fast Frame报文远程拒绝服务漏洞
Vulnerability Description
MadWifi全称是Multiband Atheros Driver for Wifi,是使用Atheros系列芯片的802.11a/b/g无线网卡在Linux下的驱动程序。 MadWifi驱动没有正确地过滤Fast Frame报文中嵌套的802.3 Ethernet帧长度字段,直接从报文中读取了帧长度。攻击者可以指定特殊的长度,这样在skb_pull操作之后skb1会小于sizeof(ethernet_header)。如果在athff_decap中对skb1再次调用了skb_pull,就会返回空,导致之
CVSS Information
N/A
Vulnerability Type
N/A