|
|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200508-10] Kismet: Multiple vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Kismet: Multiple vulnerabilities
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200508-10
(Kismet: Multiple vulnerabilities)
Kismet is vulnerable to a heap overflow when handling pcap
captures and to an integer underflow in the CDP protocol dissector.
Impact
With a specially crafted packet a possible hacker could cause Kismet to
execute arbitrary code with the rights of the user running the program.
Workaround
There is no known workaround at this time.
References:
http://www.kismetwireless.net/blog/?entry=/kismet/entry-1124158146.txt
Solution:
All Kismet users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-wireless/kismet-2005.08.1"
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
