Monday, May 5, 2025
HomeCVE/vulnerabilityCritical Wi-Fi Bug In Linux Let Hackers Take Complete Control and Crash...

Critical Wi-Fi Bug In Linux Let Hackers Take Complete Control and Crash The System Remotely

Published on

SIEM as a Service

Follow Us on Google News

A newly discovered critical Wi-Fi vulnerability in Linux lets attackers compromise the system with the help of nearby Wi-Fi devices and crush the vulnerable machine.

The vulnerability resides in the “rtlwifi” driver that mainly supports the Realtek Wi-Fi chips model used in Linux devices.

By exploiting the vulnerability, the attacker will trigger the buffer overflow attack in the Linux kernel when the vulnerable Linux system with the Realtek Wi-Fi chip nearby the malicious device that handled by the attack.

- Advertisement - Google News

A buffer overflow occurs when the process or a specific program attempts to write more data in buffer or block of memory than the actual buffer is allocated to hold the data.

A successful buffer overflow attack could trigger a response that damages files, change data or unveils private information, alter the data, and sometimes open the backdoor for attackers.

According to Nico Waisman, Security Engineer in GitHub “It’s a vulnerability that triggers an overflow remotely through Wi-Fi on the Linux kernel, as long as you’re using the Realtek (RTLWIFI), the driver.”

To exploit the vulnerability, an attacker needs to be nearby in a specific range of the vulnerable Linux machine, and he sends a “malicious” packet that will trigger the vulnerability and leads to a system crash.

Notice of Absence protocol, a feature in rtlwifi driver in Linux to helps devices autonomously power down their radio to save energy.

The flaw exists in how the driver handles the “Notice of Absence” protocol built into Wi-Fi Direct ( a standard that allows two devices to connect over Wi-Fi without the need of an access point) in which an absence of checking the certain packets for a compatible length, the attack can add the specfic new information elements to crash the system.

The vulnerability only affects Linux devices that use a Realtek chip when Wi-Fi is turned on. The flaw can’t be triggered if Wi-Fi is turned off or if the device uses a Wi-Fi chip from a different manufacturer.

The vulnerability is tracked as CVE-2019-17666 and the Linux developers promise to fix the vulnerability coming days or weeks. Later the patch will be available for other Linux distributions.

Also Read: A Vulnerability In Linux Sudo Let the Restricted Linux Users to Run Commands as Root

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Gunra Ransomware’s Double‑Extortion Playbook and Global Impact

Gunra Ransomware, has surfaced as a formidable threat in April 2025, targeting Windows systems...

Hackers Exploit 21 Apps to Take Full Control of E-Commerce Servers

Cybersecurity firm Sansec has uncovered a sophisticated supply chain attack that has compromised 21...

Hackers Target HR Departments With Fake Resumes to Spread More_eggs Malware

The financially motivated threat group Venom Spider, also tracked as TA4557, has shifted its...

RomCom RAT Targets UK Organizations Through Compromised Customer Feedback Portals

The Russian-based threat group RomCom, also known as Storm-0978, Tropical Scorpius, and Void Rabisu,...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

MediaTek Fixes Multiple Security Flaws in Smartphone, Tablet, and TV Chipsets

MediaTek, a leading provider of chipset technology for smartphones, tablets, AIoT, and smart TVs,...

Multiple Flaws in Tenda RX2 Pro Let Attackers Gain Admin Access

Security researchers have uncovered a series of critical vulnerabilities in the Tenda RX2 Pro...

Apache Parquet Java Vulnerability Enables Remote Code Execution

A high-severity vulnerability (CVE-2025-46762) has been discovered in Apache Parquet Java, exposing systems using...