Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.5
CVSSv3

CVE-2017-9616

Published: 14/06/2017 Updated: 03/10/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Wireshark

Vulnerability Summary

In Wireshark 2.2.7, overly deep mp4 chunks may cause stack exhaustion (uncontrolled recursion) in the dissect_mp4_box function in epan/dissectors/file-mp4.c.

Vulnerable Product Search on Vulmon Subscribe to Product

wireshark wireshark 2.2.7

Vendor Advisories

Debian CVElist Bug Report Logs: wireshark: CVE-2017-9616: Over deep mp4 chunks may cause stack Exhausted
Debian Bug report logs - #870173 wireshark: CVE-2017-9616: Over deep mp4 chunks may cause stack Exhausted Package: src:wireshark; Maintainer for src:wireshark is Balint Reczey <rbalint@ubuntucom>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 30 Jul 2017 18:51:02 UTC Severity: important Tags: fixe ...

References

CWE-674https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13777http://www.securityfocus.com/bid/99085http://www.securitytracker.com/id/1038706https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870173https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook