[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

linux-wlan-ng susceptible to a 'Etherleak' attack?

Hello everyone,

While playing around with the nessus network scanning
program today I noticed that when I scan my wireless
laptop (using the linux-wlan-ng drivers), nessus
informs me that my ethernet driver is susceptible to a
'Etherleak' attack. This struck me as being weird as I
remember seeing a security advisory just a little
while ago saying to upgrade the kernel as this had
been discovered and fixed. So just out of curiosity, I
took out my wireless card and put in an old ethernet
card and the warning went away.

Since I'm not too sure how to carry out the attack,
and I don't know if the vulnerability really exists or
is just a false positive within nessus, can anybody
else confirm this?

Both the machine running nessus (2.0.7-2) and the
laptop are running unstable and the laptop has:
    linux-wlan-ng 0.2.0-12 w/ modules compiled against
    kernel-source-2.4.21 2.4.21-5,
    kernel-image 2.4.21-5-586tsc,
    wireless card is a netgear MA401,
    ethernet card is a linksys PCM100,

Please include me in the cc as I'm not on the list.


Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software

Reply to: