CVE-2015-1348

EUVD-2015-1487
Heap-based buffer overflow in Aruba Instant (IAP) with firmware before 4.0.0.7 and 4.1.x before 4.1.1.2 allows remote attackers to cause a denial of service (crash or reset to factory default) via a malformed frame to the wireless interface.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 66%
Affected Products (NVD)
VendorProductVersion
arubanetworksinstant_access_point_firmware
𝑥
≤ 4.0.0.6
arubanetworksinstant_access_point_firmware
4.1.0.0
arubanetworksinstant_access_point_firmware
4.1.0.1
arubanetworksinstant_access_point_firmware
4.1.0.2
arubanetworksinstant_access_point_firmware
4.1.1
arubanetworksinstant_access_point_firmware
4.1.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.arubanetworks.com/support/alerts/aruba-psa-2015-001.txt
http://www.arubanetworks.com/support/alerts/aruba-psa-2015-001.txt