Detections
Analytics

CVE-2009-0282

critical

Description

Integer overflow in Ralink Technology USB wireless adapter (RT73) 3.08 for Windows, and other wireless card drivers including rt2400, rt2500, rt2570, and rt61, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Probe Request packet with a long SSID, possibly related to an integer signedness error.

References

http://www.securityfocus.com/bid/33340

http://www.securityfocus.com/archive/1/500168/100/0/threaded

http://www.debian.org/security/2009/dsa-1714

http://www.debian.org/security/2009/dsa-1713

http://www.debian.org/security/2009/dsa-1712

http://security.gentoo.org/glsa/glsa-200907-08.xml

http://secunia.com/advisories/35743

http://secunia.com/advisories/33699

http://secunia.com/advisories/33592

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=512995

Details

Source: Mitre, NVD

Published: 2009-01-27

Updated: 2018-10-30

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical