Unrated severityNVD Advisory· Published Nov 6, 2008· Updated Apr 23, 2026

CVE-2008-4395

Description

Multiple buffer overflows in the ndiswrapper module 1.53 for the Linux kernel 2.6 allow remote attackers to execute arbitrary code by sending packets over a local wireless network that specify long ESSIDs.

Affected products

Linux/Kernel
cpe:2.3:o:linux:linux_kernel:2.6:*:*:*:*:*:*:*
Ubuntu/Linux Kernel
cpe:2.3:o:ubuntu:linux_kernel:*:*:*:*:*:*:*:*
Range: <=2.6.26

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/32509nvdVendor Advisory
bugs.gentoo.org/show_bug.cginvd
lists.opensuse.org/opensuse-security-announce/2008-12/msg00001.htmlnvd
www.mail-archive.com/frugalware-git%40frugalware.org/msg22366.htmlnvd
www.securityfocus.com/bid/32118nvd
www.securitytracker.com/idnvd
www.ubuntu.com/usn/usn-662-1nvd
www.ubuntu.com/usn/usn-662-2nvd
bugs.launchpad.net/bugs/cve/2008-4395nvd
bugs.launchpad.net/ubuntu/+source/linux/+bug/275860nvd
exchange.xforce.ibmcloud.com/vulnerabilities/46437nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000