Aruba Operating System, the operating system for Aruba controller-managed wireless LANs and Aruba mobile controllers from Aruba Networks, has a buffer overflow vulnerability that results from a boundary error when the system processes PAPI messages. error when processing PAPI messages. A remote attacker could send a specially crafted PAPI packet to port 8211 UDP, triggering memory corruption and executing arbitrary code on the target system.