CVE-2007-2057

NameCVE-2007-2057
DescriptionStack-based buffer overflow in aircrack-ng airodump-ng 0.7 allows remote attackers to execute arbitrary code via crafted 802.11 authentication packets.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-1280-1, DTSA-35-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
aircrack-ng (PTS)bullseye1:1.6+git20210130.91820bc-1fixed
bookworm1:1.7-5fixed
sid, trixie1:1.7+git20230807.4bf83f1a-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
aircrack-ngsourceetch1:0.6.2-7etch1DSA-1280-1
aircrack-ngsourcelenny1:0.8-0.1lenny1DTSA-35-1
aircrack-ngsource(unstable)1:0.7-3medium

Notes

http://trac.aircrack-ng.org/changeset/288
Search for package or bug name: Reporting problems