In recent post on this blog, I wrote about critical bugs in wireless drivers. Here is what Joshua Wright has to say at wifisec group at securityfocus.com:
This is only the beginning of what will likely be a rash of vulnerabilities in drivers that allows an attacker to remotely compromise systems, regardless of the authentication or encryption mechanism used.
This article is about a Broadcom vulnerability (https://www.wirelessve.org/entries/show/WVE-2006-0071), and the WVE has recorded several others as well.
Interesting development of situation. We certainly should follow on this topic.