Published: 30/10/2009 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Off-by-one error in the dissect_negprot_response function in packet-smb.c in the SMB dissector in Wireshark 1.2.0 up to and including 1.2.2 allows remote malicious users to cause a denial of service (application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
wireshark wireshark 1.2.0
wireshark wireshark 1.2.1
wireshark wireshark 1.2

Debian Bug report logs - #553583 CVE-2009-3829 CVE-2009-3551 CVE-2009-3550 CVE-2009-3549 Package: wireshark; Maintainer for wireshark is Balint Reczey <rbalint@ubuntucom>; Source for wireshark is src:wireshark (PTS, buildd, popcon) Reported by: Giuseppe Iuculano <iuculano@debianorg> Date: Sun, 1 Nov 2009 09:54:02 ...

CWE-189 http://www.wireshark.org/security/wnpa-sec-2009-07.html http://www.wireshark.org/docs/relnotes/wireshark-1.2.3.html http://www.vupen.com/english/advisories/2009/3061 http://secunia.com/advisories/37175 http://www.securityfocus.com/bid/36846 http://secunia.com/advisories/37409 https://exchange.xforce.ibmcloud.com/vulnerabilities/54018 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6049 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=553583 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-3551

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect