Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2011-1591

Published: 29/04/2011 Updated: 19/09/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 950
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Wireshark

Vulnerability Summary

Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x prior to 1.4.5 allows remote malicious users to execute arbitrary code via a crafted .pcap file.

Vulnerable Product Search on Vulmon Subscribe to Product

wireshark wireshark 1.4.1

wireshark wireshark 1.4.0

wireshark wireshark 1.4.3

wireshark wireshark 1.4.2

wireshark wireshark 1.4.4

Exploits

Exploit DB: Wireshark 1.4.1 < 1.4.4 - Local Overflow (SEH)
#!/usr/bin/env python # Vulnerable app: Wireshark 141-144 # Author: sickness # Download : # OS: Tested it on Windows XP SP2 and SP3 but it should work on every Windows with DEP off (still working on a ROP exploit) # DATE : 17042011 # Fixed in latest version 145 # DO NOT FORGET TO FEEL THE PWNSAUCE WITH: redminecorelanbe:8800/pro ...
Exploit DB: Wireshark 1.4.4 - DECT Dissector Remote Buffer Overflow
#!/usr/bin/env python # -*- coding: iso-8859-15 -*- a = """ \n\t-- CVE: 2011-1591 : Wireshark &lt;= 144 packet-dectc dissect_dect() --\n # # -------- Team : Consortium-of-Pwners # -------- Author : ipv # -------- Impact : high # -------- Target : Archlinux wireshark-gtk-143-1-i686pkgtarxz # -------- Description # # This code expl ...
Exploit DB: Wireshark 1.4.4 - 'packet-dect.c' Remote Stack Buffer Overflow (Metasploit) (2)
## # $Id: wireshark_packet_dectrb 12371 2011-04-19 16:41:58Z sinn3r $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' ...
Exploit DB: Wireshark 1.4.4 - 'packet-dect.c' Local Stack Buffer Overflow (Metasploit) (1)
## # $Id: wireshark_packet_dectrb 12364 2011-04-19 07:53:58Z sinn3r $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' ...

References

CWE-119http://www.wireshark.org/security/wnpa-sec-2011-06.htmlhttp://openwall.com/lists/oss-security/2011/04/18/8http://www.vupen.com/english/advisories/2011/1022http://openwall.com/lists/oss-security/2011/04/18/2http://www.osvdb.org/71848http://www.exploit-db.com/exploits/17185http://securitytracker.com/id?1025389https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5838http://secunia.com/advisories/44172http://www.kb.cert.org/vuls/id/243670https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5836http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058983.htmlhttp://secunia.com/advisories/44374http://www.exploit-db.com/exploits/17195http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058900.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-April/058993.htmlhttp://www.vupen.com/english/advisories/2011/1106http://www.mandriva.com/security/advisories?name=MDVSA-2011:083https://exchange.xforce.ibmcloud.com/vulnerabilities/66834https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15000https://nvd.nist.govhttps://www.exploit-db.com/exploits/17185/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook