CVE-2006-4022 - Vulnerability Details - OpenCVE

Intel 2100 PRO/Wireless Network Connection driver PROSet before 7.1.4.6 allows local users to corrupt memory and execute code via "requests for capabilities from higher-level protocol drivers or user-level applications" involving crafted frames, a different issue than CVE-2006-3992.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Intel	2100 Proset Wireless

Configuration 1 [-]

cpe:2.3:a:intel:2100_proset_wireless:7.1.4.5:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://securitytracker.com/id?1016621
http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm
http://www.kb.cert.org/vuls/id/824500
http://www.securityfocus.com/bid/19299
http://www.vupen.com/english/advisories/2006/3099

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-08-09T00:00:00

Updated: 2024-08-07T18:57:43.883Z

Reserved: 2006-08-08T00:00:00

Link: CVE-2006-4022

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-08-09T00:04:00.000

Modified: 2024-11-21T00:14:57.657

Link: CVE-2006-4022

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-07-28T00:00:00", "descriptions": [{"lang": "en", "value": "Intel 2100 PRO/Wireless Network Connection driver PROSet before 7.1.4.6 allows local users to corrupt memory and execute code via \"requests for capabilities from higher-level protocol drivers or user-level applications\" involving crafted frames, a different issue than CVE-2006-3992."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2006-08-23T09:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "VU#824500", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/824500"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm"}, {"name": "19299", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19299"}, {"name": "1016621", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016621"}, {"name": "ADV-2006-3099", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/3099"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-4022", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Intel 2100 PRO/Wireless Network Connection driver PROSet before 7.1.4.6 allows local users to corrupt memory and execute code via \"requests for capabilities from higher-level protocol drivers or user-level applications\" involving crafted frames, a different issue than CVE-2006-3992."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "VU#824500", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/824500"}, {"name": "http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm", "refsource": "CONFIRM", "url": "http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm"}, {"name": "19299", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19299"}, {"name": "1016621", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016621"}, {"name": "ADV-2006-3099", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/3099"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:57:43.883Z"}, "title": "CVE Program Container", "references": [{"name": "VU#824500", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/824500"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm"}, {"name": "19299", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19299"}, {"name": "1016621", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016621"}, {"name": "ADV-2006-3099", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/3099"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-4022", "datePublished": "2006-08-09T00:00:00", "dateReserved": "2006-08-08T00:00:00", "dateUpdated": "2024-08-07T18:57:43.883Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:intel:2100_proset_wireless:7.1.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "136AB607-7D47-47A7-B6E5-5EF5A8403D7F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Intel 2100 PRO/Wireless Network Connection driver PROSet before 7.1.4.6 allows local users to corrupt memory and execute code via \"requests for capabilities from higher-level protocol drivers or user-level applications\" involving crafted frames, a different issue than CVE-2006-3992."}, {"lang": "es", "value": "Intel 2100 PRO/Wireless Network Connection driver PROSet anterior a 7.1.4.6 permite a usuarios locales corromper la memoria y ejecutar c\u00f3digo mediante \"peticiones de capacidades de protocolos de nivel superior o aplicaciones a nivel de usuario\" incluyendo tramas manipuladas, un problema distinto de CVE-2006-3992."}], "id": "CVE-2006-4022", "lastModified": "2024-11-21T00:14:57.657", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-08-09T00:04:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://securitytracker.com/id?1016621"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/824500"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/19299"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/3099"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://securitytracker.com/id?1016621"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/824500"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/19299"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/3099"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}