| VID |
28155 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The Intel Wireless/PRO 2100 driver, according to its version number, has a local privilege escalation vulnerability. Intel Centrino 2100 PRO/Wireless Network Adapter versions prior to 7.1.4.6 with driver version 1.2.4.37 for Microsoft Windows could allow a local attacker to gain elevated privileges on the system, caused by improper handling of malformed requests from applications or higher level protocol drivers. A local attacker could exploit this vulnerability to elevate his privileges (SYSTEM) on the affected host.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm
http://www.frsirt.com/english/advisories/2006/3099
http://securitytracker.com/id?1016621
* Platforms Affected:
Intel PROSet/Wireless 2100 versions 7.1.4.6 and earlier
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest Intel PROSet version (7.1.4.6 driver version 1.2.4.37 or later) as listed in the Intel Support Solution ID: CS-023065 at http://support.intel.com/support/wireless/wlan/pro2100/sb/CS-023067.htm |
| Related URL |
CVE-2006-4022 (CVE) |
| Related URL |
19299 (SecurityFocus) |
| Related URL |
28209 (ISS) |
|
