Published: 03/03/2011 Updated: 19/09/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

wiretap/pcapng.c in Wireshark 1.2.0 up to and including 1.2.14 and 1.4.0 up to and including 1.4.3 allows remote malicious users to cause a denial of service (application crash) via a pcap-ng file that contains a large packet-length field.

Vulnerable Product	Search on Vulmon	Subscribe to Product
wireshark wireshark 1.2.0
wireshark wireshark 1.2.8
wireshark wireshark 1.2.9
wireshark wireshark 1.4.1
wireshark wireshark 1.4.2
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.2.7
wireshark wireshark 1.2.14
wireshark wireshark 1.4.0
wireshark wireshark 1.2.1
wireshark wireshark 1.2.2
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.4.3
wireshark wireshark 1.2.3
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13

Huzaifa Sidhpurwala, Joernchen, and Xiaopeng Zhang discovered several vulnerabilities in the Wireshark network traffic analyzer Vulnerabilities in the DCT3, LDAP and SMB dissectors and in the code to parse pcag-ng files could lead to denial of service or the execution of arbitrary code For the oldstable distribution (lenny), this problem has been ...

CWE-399 http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html http://anonsvn.wireshark.org/viewvc?view=rev&revision=35855 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5661 http://www.wireshark.org/security/wnpa-sec-2011-04.html http://www.wireshark.org/security/wnpa-sec-2011-03.html http://www.vupen.com/english/advisories/2011/0719 http://www.redhat.com/support/errata/RHSA-2011-0370.html http://secunia.com/advisories/43821 http://www.vupen.com/english/advisories/2011/0622 http://www.mandriva.com/security/advisories?name=MDVSA-2011:044 http://www.vupen.com/english/advisories/2011/0747 http://www.redhat.com/support/errata/RHSA-2011-0369.html http://www.securitytracker.com/id?1025148 http://secunia.com/advisories/43795 http://www.debian.org/security/2011/dsa-2201 https://hermes.opensuse.org/messages/8086844 http://secunia.com/advisories/44169 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.html http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.html http://www.kb.cert.org/vuls/id/215900 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.html http://www.vupen.com/english/advisories/2011/0626 http://secunia.com/advisories/43759 https://exchange.xforce.ibmcloud.com/vulnerabilities/65779 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14997 https://nvd.nist.gov https://www.debian.org/security/./dsa-2201

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-1139

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect