CVE-2007-2057
aircrack-ng - programming error
EPSS 58.7%
Description
Stack-based buffer overflow in aircrack-ng airodump-ng 0.7 allows remote attackers to execute arbitrary code via crafted 802.11 authentication packets.
How to fix CVE-2007-2057
To remediate CVE-2007-2057, upgrade the affected package to a fixed version below.
- Debian/aircrack-ng—upgrade to 1:0.7-3 or later
- Debian/aircrack-ng—upgrade to 1:0.6.2-7etch1 or later
- Debian/aircrack-ng—upgrade to 1:0.8-0.1lenny1 or later
Is CVE-2007-2057 being exploited?
Likely — EPSS is 58.7%, placing CVE-2007-2057 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.
Affected packages (3)
- from 0, < 1:0.7-3
- from 0, < 1:0.6.2-7etch1
- from 0, < 1:0.8-0.1lenny1