4.3
CVSSv2

CVE-2009-4377

Published: 21/12/2009 Updated: 19/09/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Summary

The (1) SMB and (2) SMB2 dissectors in Wireshark 0.9.0 up to and including 1.2.4 allow remote malicious users to cause a denial of service (crash) via a crafted packet that triggers a NULL pointer dereference, as demonstrated by fuzz-2009-12-07-11141.pcap.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

wireshark wireshark 0.99.7

wireshark wireshark 0.99.5

wireshark wireshark 0.99.4

wireshark wireshark 0.9.10

wireshark wireshark 0.99.9

wireshark wireshark 1.0.1

wireshark wireshark 1.0.4

wireshark wireshark 1.0

wireshark wireshark 1.0.2

wireshark wireshark 0.9.7

wireshark wireshark 0.9.2

wireshark wireshark 0.9.8

wireshark wireshark 0.99.8

wireshark wireshark 0.99.3

wireshark wireshark 0.9.14

wireshark wireshark 0.99.0

wireshark wireshark 1.0.9

wireshark wireshark 1.2.0

wireshark wireshark 0.9.5

wireshark wireshark 1.2.3

wireshark wireshark 0.9.6

wireshark wireshark 0.99.6

wireshark wireshark 0.99.2

wireshark wireshark 0.99.1

wireshark wireshark 1.0.3

wireshark wireshark 1.0.6

wireshark wireshark 1.2.1

wireshark wireshark 1.0.8

wireshark wireshark 1.0.5

wireshark wireshark 1.2.4

wireshark wireshark 1.2

wireshark wireshark 1.2.2

wireshark wireshark 1.0.0

wireshark wireshark 0.99.6a

wireshark wireshark 0.99

wireshark wireshark 1.0.7

Vendor Advisories

Synopsis Moderate: wireshark security update Type/Severity Security Advisory: Moderate Topic Updated wireshark packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 3, 4, and 5The Red Hat Security Response Team has rated this update as having moderatesecurity impact Commo ...
Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer, which may lead to the execution of arbitrary code or denial of service The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-4377 A NULL pointer dereference was found in the SMB/SMB2 dissectors CVE-2010-0304 ...