« NASA hacker releases myspace song | Main | Obama Pwns Mcain in election, hacker pwns them both »

Remote buffer overflow bug bites Linux Kernel Driver Wrapper

"A remote buffer overflow vulnerability in the Linux Kernel could be exploited by attackers to execute code or cripple affected systems, according to a Gentoo bug report that just became public.

The flaw could allow malicious hackers to launch arbitrary code with kernel-level privileges.  This could lead to complete system compromise or, in some cases if an exploit fails, result in denial-of-service attacks.

This from the Gentoo bug report:

  • Anders Kaseorg discovered that ndiswrapper did not correctly handle long ESSIDs. If ndiswrapper is in use, a physically near-by attacker could generate specially crafted wireless network traffic and crash the system, leading to a denial of service."

Read more: http://blogs.zdnet.com/security/?p=2121

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.


All Comments are Moderated and will be delayed!



Note that ndiswrapper is NOT part of the mainline Linux Kernel.


The original headline is from zdnet but thank you for clarifying this. I've properly updated the headline to reflect this.

Post a comment







Remember personal info?