Wireless monkey on the loose

[Symantec]

Wireless monkey on the loose
<p>It has recently been reported that functional exploit code for Broadcom Wireless drivers has been made available to the public. Concerns over the exploit are increasing, because the exploit allows remote code execution, and the susceptible drivers are shipped with many new computers.</p>

<p>More information can be found at <a href="http://projects.info-pull.com/mokb/MOKB-11-11-2006.html">the Month of Kernel Bugs site</a>.</p>

<p>A machine is vulnerable to the exploit if the computer has a susceptible Broadcom Wireless-N network card, and is running the drivers in question. Unfortunately, due to the nature of wireless networking, all that is required of the attacker is to be within range of the vulnerable machine. Because this vulnerability occurs at an extremely low level<br />
within the networking protocol, there may be difficulties in detecting these attacks using standard IDS/IPS methods. </p>

<p>Symantec Security Response recommends that you update the wireless driver as soon as possible, if your computer is running a vulnerable version of the Broadcom Wireless driver. Otherwise, you should avoid using your wireless card to connect to networks in insecure areas, and also be aware of the risk involved when connecting wirelessly.</p>
http://www.symantec.com/enterprise/security_response/weblog/2006/11/wireless_driver_on_the_crash_c.html
http://www.symantec.com/enterprise/security_response/weblog/2006/11/wireless_driver_on_the_crash_c.html
Sat, 11 Nov 2006 22:32:01 -0800