blob: 1bbea807cef1c33559782f3964132666b64225b4 [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200508-10">
<title>Kismet: Multiple vulnerabilities</title>
Kismet is vulnerable to multiple issues potentially resulting in the
execution of arbitrary code.
<product type="ebuild">Kismet</product>
<announced>August 19, 2005</announced>
<revised>May 22, 2006: 02</revised>
<package name="net-wireless/kismet" auto="yes" arch="*">
<unaffected range="ge">2005.08.1</unaffected>
<vulnerable range="lt">2005.08.1</vulnerable>
Kismet is an 802.11 Layer 2 wireless network detector, sniffer, and
intrusion detection system.
Kismet is vulnerable to a heap overflow when handling pcap captures and
to an integer underflow in the CDP protocol dissector.
<impact type="high">
With a specially crafted packet an attacker could cause Kismet to
execute arbitrary code with the rights of the user running the program.
There is no known workaround at this time.
All Kismet users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=net-wireless/kismet-2005.08.1&quot;</code>
<uri link="">Kismet Release Notes</uri>
<uri link="">CVE-2005-2626</uri>
<uri link="">CVE-2005-2627</uri>
<metadata tag="requester" timestamp="Wed, 17 Aug 2005 05:08:47 +0000">
<metadata tag="submitter" timestamp="Thu, 18 Aug 2005 05:16:35 +0000">
<metadata tag="bugReady" timestamp="Thu, 18 Aug 2005 07:53:07 +0000">