VAR-200706-0068
Vulnerability from variot - Updated: 2023-12-18 13:40Buffer overflow in the wireless driver 6.0.0.18 for D-Link DWL-G650+ (Rev. A1) on Windows XP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a beacon frame with a long TIM Information Element. D-Link DWL-G650 is a widely used wireless network card. Patching plan: The vendor has not released any upgrade patches for the time being, please pay attention to the vendor address in time: http://www.dlink.com/products/?pid=358. The D-Link Wireless Device Driver for DWL-G650 devices is prone to a buffer-overflow vulnerability because the driver fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. Exploiting this issue potentially allows attackers to execute arbitrary machine code in the context of the kernel hosting the vulnerable driver. Failed attempts will likely crash the kernel, resulting in denial-of-service conditions. D-Link DWL-G650 6.0.0.18 (Rev. A1) is reported vulnerable; other versions may also be affected
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200706-0068",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": null,
"scope": null,
"trust": 1.2,
"vendor": "none",
"version": null
},
{
"model": "windows xp",
"scope": "eq",
"trust": 1.1,
"vendor": "microsoft",
"version": "*"
},
{
"model": "dwl-g650+",
"scope": "eq",
"trust": 0.8,
"vendor": "d link",
"version": "firmware 6.0.0.18"
},
{
"model": "windows xp",
"scope": "eq",
"trust": 0.8,
"vendor": "microsoft",
"version": "sp3"
},
{
"model": "windows xp",
"scope": null,
"trust": 0.6,
"vendor": "microsoft",
"version": null
},
{
"model": "dwl-g650",
"scope": "eq",
"trust": 0.3,
"vendor": "d link",
"version": "6.018"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"db": "CNVD",
"id": "CNVD-2007-3824"
},
{
"db": "VULMON",
"id": "CVE-2007-0933"
},
{
"db": "BID",
"id": "24438"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003380"
},
{
"db": "NVD",
"id": "CVE-2007-0933"
},
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:d-link:dwl-g650\\+:firmware_6.0.0.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2007-0933"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Laurent Butti\u203b laurent.butti@orange-ftgroup.com",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
],
"trust": 0.6
},
"cve": "CVE-2007-0933",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 7.8,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2007-0933",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "VHN-24295",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2007-0933",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-200706-054",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-24295",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2007-0933",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-24295"
},
{
"db": "VULMON",
"id": "CVE-2007-0933"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003380"
},
{
"db": "NVD",
"id": "CVE-2007-0933"
},
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Buffer overflow in the wireless driver 6.0.0.18 for D-Link DWL-G650+ (Rev. A1) on Windows XP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a beacon frame with a long TIM Information Element. D-Link DWL-G650 is a widely used wireless network card. Patching plan: The vendor has not released any upgrade patches for the time being, please pay attention to the vendor address in time: http://www.dlink.com/products/?pid=358. The D-Link Wireless Device Driver for DWL-G650 devices is prone to a buffer-overflow vulnerability because the driver fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer. \nExploiting this issue potentially allows attackers to execute arbitrary machine code in the context of the kernel hosting the vulnerable driver. Failed attempts will likely crash the kernel, resulting in denial-of-service conditions. \nD-Link DWL-G650 6.0.0.18 (Rev. A1) is reported vulnerable; other versions may also be affected",
"sources": [
{
"db": "NVD",
"id": "CVE-2007-0933"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003380"
},
{
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"db": "CNVD",
"id": "CNVD-2007-3824"
},
{
"db": "BID",
"id": "24438"
},
{
"db": "VULHUB",
"id": "VHN-24295"
},
{
"db": "VULMON",
"id": "CVE-2007-0933"
}
],
"trust": 3.15
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2007-0933",
"trust": 3.5
},
{
"db": "BID",
"id": "24438",
"trust": 2.7
},
{
"db": "SECUNIA",
"id": "25602",
"trust": 2.4
},
{
"db": "OSVDB",
"id": "36160",
"trust": 1.8
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003380",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-200706-054",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2007-3843",
"trust": 0.6
},
{
"db": "CNCVE",
"id": "CNCVE-20070933",
"trust": 0.6
},
{
"db": "CNVD",
"id": "CNVD-2007-3824",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-24295",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2007-0933",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"db": "CNVD",
"id": "CNVD-2007-3824"
},
{
"db": "VULHUB",
"id": "VHN-24295"
},
{
"db": "VULMON",
"id": "CVE-2007-0933"
},
{
"db": "BID",
"id": "24438"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003380"
},
{
"db": "NVD",
"id": "CVE-2007-0933"
},
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
]
},
"id": "VAR-200706-0068",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"db": "CNVD",
"id": "CNVD-2007-3824"
},
{
"db": "VULHUB",
"id": "VHN-24295"
}
],
"trust": 0.13
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"IoT"
],
"sub_category": null,
"trust": 1.2
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"db": "CNVD",
"id": "CNVD-2007-3824"
}
]
},
"last_update_date": "2023-12-18T13:40:37.425000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.dlink.com"
},
{
"title": "Windows XP",
"trust": 0.8,
"url": "http://windows.microsoft.com/en-us/windows/products/windows-xp"
},
{
"title": "wifuzzit",
"trust": 0.1,
"url": "https://github.com/0xd012/wifuzzit "
},
{
"title": "wifuzzit",
"trust": 0.1,
"url": "https://github.com/flowerhack/wifuzzit "
},
{
"title": "wifuzzit",
"trust": 0.1,
"url": "https://github.com/84kaliplexon3/wifuzzit "
},
{
"title": "wifuzzit",
"trust": 0.1,
"url": "https://github.com/plexone2019/wifuzzit "
},
{
"title": "wifuzzit",
"trust": 0.1,
"url": "https://github.com/wi-fi-analyzer/wifuzzit "
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2007-0933"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003380"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2007-0933"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.4,
"url": "http://secunia.com/advisories/25602"
},
{
"trust": 2.4,
"url": "http://www.securityfocus.com/bid/24438"
},
{
"trust": 2.1,
"url": "http://www.blackhat.com/presentations/bh-europe-07/butti/presentation/bh-eu-07-butti.pdf"
},
{
"trust": 1.8,
"url": "http://osvdb.org/36160"
},
{
"trust": 1.2,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34831"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-0933"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-0933"
},
{
"trust": 0.3,
"url": "http://www.dlink.com/products/?pid=11"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/.html"
},
{
"trust": 0.1,
"url": "http://tools.cisco.com/security/center/viewalert.x?alertid=13530"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2007-3824"
},
{
"db": "VULHUB",
"id": "VHN-24295"
},
{
"db": "VULMON",
"id": "CVE-2007-0933"
},
{
"db": "BID",
"id": "24438"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003380"
},
{
"db": "NVD",
"id": "CVE-2007-0933"
},
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"db": "CNVD",
"id": "CNVD-2007-3824"
},
{
"db": "VULHUB",
"id": "VHN-24295"
},
{
"db": "VULMON",
"id": "CVE-2007-0933"
},
{
"db": "BID",
"id": "24438"
},
{
"db": "JVNDB",
"id": "JVNDB-2007-003380"
},
{
"db": "NVD",
"id": "CVE-2007-0933"
},
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2007-06-12T00:00:00",
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"date": "2007-06-12T00:00:00",
"db": "CNVD",
"id": "CNVD-2007-3824"
},
{
"date": "2007-06-05T00:00:00",
"db": "VULHUB",
"id": "VHN-24295"
},
{
"date": "2007-06-05T00:00:00",
"db": "VULMON",
"id": "CVE-2007-0933"
},
{
"date": "2007-06-12T00:00:00",
"db": "BID",
"id": "24438"
},
{
"date": "2012-09-25T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2007-003380"
},
{
"date": "2007-06-05T21:30:00",
"db": "NVD",
"id": "CVE-2007-0933"
},
{
"date": "2007-06-05T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2007-06-12T00:00:00",
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"date": "2007-06-12T00:00:00",
"db": "CNVD",
"id": "CNVD-2007-3824"
},
{
"date": "2017-07-29T00:00:00",
"db": "VULHUB",
"id": "VHN-24295"
},
{
"date": "2017-07-29T00:00:00",
"db": "VULMON",
"id": "CVE-2007-0933"
},
{
"date": "2007-06-13T04:39:00",
"db": "BID",
"id": "24438"
},
{
"date": "2012-09-25T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2007-003380"
},
{
"date": "2017-07-29T01:30:30.860000",
"db": "NVD",
"id": "CVE-2007-0933"
},
{
"date": "2007-06-06T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "D-Link DWL-G650 TIM Information Element Wireless Drive Beacon Remote Overflow Vulnerability",
"sources": [
{
"db": "CNVD",
"id": "CNVD-2007-3843"
},
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
],
"trust": 1.2
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "buffer overflow",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200706-054"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…