• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

FreeBSD IEEE 802.11 Network Subsystem Remote Buffer Overflow Vulnerability

FreeBSD is susceptible to a remote, kernel-level buffer overflow vulnerability. This issue is due to a failure of the kernel to properly bounds check user-supplied network data prior to copying it to an insufficiently sized memory buffer.

This issue allows remote attackers to execute arbitrary machine code in the context of the affected kernel, facilitating the complete compromise of affected computers. As this issue is present in a low-level network subsystem, it is likely exploitable even if the host is blocking packets with a host-based packet filter.