Published: 22/10/2008 Updated: 11/10/2018
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

The dissect_btacl function in packet-bthci_acl.c in the Bluetooth ACL dissector in Wireshark 0.99.2 up to and including 1.0.3 allows remote malicious users to cause a denial of service (application crash or abort) via a packet with an invalid length, related to an erroneous tvb_memcpy call.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

wireshark wireshark 0.99.2

wireshark wireshark 0.99.3

wireshark wireshark 0.99.4

wireshark wireshark 1.0.0

wireshark wireshark 1.0.1

wireshark wireshark 0.99.6a

wireshark wireshark 0.99.7

wireshark wireshark 0.99.5

wireshark wireshark 0.99.6

wireshark wireshark 1.0.2

wireshark wireshark 1.0.3

wireshark wireshark 0.99.8

wireshark wireshark 1.0

Vendor Advisories

Synopsis Moderate: wireshark security update Type/Severity Security Advisory: Moderate Topic Updated wireshark packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 3, 4, and 5This update has been rated as having moderate security impact by the RedHat Security Response Tea ...
Debian Bug report logs - #503589 wireshark: CVE-2008-46[80-85] multiple security issues Package: wireshark; Maintainer for wireshark is Balint Reczey <rbalint@ubuntucom>; Source for wireshark is src:wireshark (PTS, buildd, popcon) Reported by: Nico Golde <nion@debianorg> Date: Sun, 26 Oct 2008 20:12:01 UTC Severit ...
Several remote vulnerabilities have been discovered in network traffic analyzer Wireshark The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2008-3137 The GSM SMS dissector is vulnerable to denial of service CVE-2008-3138 The PANA and KISMET dissectors are vulnerable to denial of service CVE-2008-314 ...