CVE-2006-2213 — MEDIUM (5.0)

Vulnerability Description

Hostapd 0.3.7-2 allows remote attackers to cause a denial of service (segmentation fault) via an unspecified value in the key_data_length field of an EAPoL frame.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Hostapd	Hostapd	0.3.7_2

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=365897
http://secunia.com/advisories/19966Patch
http://secunia.com/advisories/20195
http://secunia.com/advisories/20265
http://www.debian.org/security/2006/dsa-1065
http://www.mandriva.com/security/advisories?name=MDKSA-2006:088
http://www.osvdb.org/25233
http://www.securityfocus.com/bid/17846
http://www.vupen.com/english/advisories/2006/1657
https://exchange.xforce.ibmcloud.com/vulnerabilities/26239
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=365897
http://secunia.com/advisories/19966Patch
http://secunia.com/advisories/20195
http://secunia.com/advisories/20265
http://www.debian.org/security/2006/dsa-1065

FAQ

What is CVE-2006-2213?

CVE-2006-2213 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Hostapd 0.3.7-2 allows remote attackers to cause a denial of service (segmentation fault) via an unspecified value in the key_data_length field of an EAPoL frame.

How severe is CVE-2006-2213?

CVE-2006-2213 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-2213?

Check the references section above for vendor advisories and patch information. Affected products include: Hostapd Hostapd.