CVE-2010-4648

Updated: 2019-03-26

CWE: Insufficient Information

Description:

The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading Wi-Fi frames.

CVSS3:


Vendor State

OS Vendor version Errata
RHEL 6 2.6.32-71.24.1.el6 RHSA-2011:0421
CentOS 6 2.6.32-71.24.1.el6 CESA-2011:0421
CentOS 6 plus 2.6.32-71.24.1.el6.centos.plus CESA-2011:0421
Scientific 6 2.6.32-71.24.1.el6 CESA-2011:0421

KernelCare State

OS Original kernel version State
RHEL 6
Ready For Release
CentOS 6
Ready For Release
CentOS 6 plus
Ready For Release
OpenVZ 6
Ready For Release
Scientific 6
Ready For Release
OEL 6 Dell
Will Not Fix