Published: 16/08/2012 Updated: 30/10/2018

CVSS v2 Base Score: 3.3 | Impact Score: 2.9 | Exploitability Score: 6.5

VMScore: 294

Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P

The CTDB dissector in Wireshark 1.4.x prior to 1.4.15, 1.6.x prior to 1.6.10, and 1.8.x prior to 1.8.2 allows remote malicious users to cause a denial of service (loop and CPU consumption) via a malformed packet.

Vulnerable Product	Search on Vulmon	Subscribe to Product
wireshark wireshark 1.4.0
wireshark wireshark 1.4.1
wireshark wireshark 1.4.4
wireshark wireshark 1.4.5
wireshark wireshark 1.4.12
wireshark wireshark 1.4.13
wireshark wireshark 1.4.6
wireshark wireshark 1.4.7
wireshark wireshark 1.4.14
wireshark wireshark 1.4.8
wireshark wireshark 1.4.9
wireshark wireshark 1.4.2
wireshark wireshark 1.4.3
wireshark wireshark 1.4.10
wireshark wireshark 1.4.11
opensuse opensuse 11.4
opensuse opensuse 12.1
sun sunos 5.11
redhat enterprise linux 5
wireshark wireshark 1.6.0
wireshark wireshark 1.6.1
wireshark wireshark 1.6.8
wireshark wireshark 1.6.9
wireshark wireshark 1.6.2
wireshark wireshark 1.6.3
wireshark wireshark 1.6.4
wireshark wireshark 1.6.5
wireshark wireshark 1.6.6
wireshark wireshark 1.6.7
wireshark wireshark 1.8.0
wireshark wireshark 1.8.1

Synopsis Moderate: wireshark security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic Updated wireshark packages that fix multiple security issues, several bugs,and add various enhancements are now available for Red Hat EnterpriseLinux 6The Red Hat Security Response Team ha ...

Synopsis Moderate: wireshark security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic Updated wireshark packages that fix several security issues, three bugs,and add one enhancement are now available for Red Hat Enterprise Linux 5The Red Hat Security Response Team has rated ...

Debian Bug report logs - #680056 wireshark: CVE-2012-4048: PPP dissector crash/segfault Package: wireshark; Maintainer for wireshark is Balint Reczey <rbalint@ubuntucom>; Source for wireshark is src:wireshark (PTS, buildd, popcon) Reported by: BjÃ¸rn Mork <bjorn@morkno> Date: Tue, 3 Jul 2012 08:36:02 UTC Severi ...

Debian Bug report logs - #776135 wireshark: Multiple security issues in 1122 and prior versions Package: wireshark; Maintainer for wireshark is Balint Reczey <rbalint@ubuntucom>; Source for wireshark is src:wireshark (PTS, buildd, popcon) Reported by: balint@balintreczeyhu Date: Sat, 24 Jan 2015 10:51:01 UTC Severity: ...

Debian Bug report logs - #780372 CVE-2015-2187 CVE-2015-2188 CVE-2015-2189 CVE-2015-2190 CVE-2015-2191 CVE-2015-2192 Package: wireshark; Maintainer for wireshark is Balint Reczey <rbalint@ubuntucom>; Source for wireshark is src:wireshark (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Th ...

Two flaws were found in Wireshark If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark (CVE-2013-3559, CVE-2013-4083) Several denial of service flaws were found in Wireshark Wireshark could crash or stop responding if it read a malfor ...

CWE-399 http://www.wireshark.org/security/wnpa-sec-2012-23.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7573 https://hermes.opensuse.org/messages/15514562 http://lists.opensuse.org/opensuse-updates/2012-08/msg00033.html http://rhn.redhat.com/errata/RHSA-2013-0125.html http://www.securityfocus.com/bid/55035 https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_wireshark3 http://secunia.com/advisories/51363 http://www.gentoo.org/security/en/glsa/glsa-201308-05.xml http://secunia.com/advisories/54425 http://secunia.com/advisories/50276 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15619 https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2013:1569 https://alas.aws.amazon.com/ALAS-2013-251.html

CVE-2012-4290

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect