Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2018-11362

Published: 22/05/2018 Updated: 07/11/2023
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Wireshark

Vulnerability Summary

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by avoiding a buffer over-read upon encountering a missing '\0' character.

Vulnerable Product Search on Vulmon Subscribe to Product

wireshark wireshark

wireshark wireshark 2.6.0

debian debian linux 8.0

debian debian linux 7.0

debian debian linux 9.0

Vendor Advisories

Debian CVElist Bug Report Logs: wireshark: CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362
Debian Bug report logs - #900708 wireshark: CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 Package: src:wireshark; Maintainer for src:wireshark is Balint Reczey <rbalint@ubuntucom>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 3 Jun 2018 1 ...
Debian Security Advisories: DSA-4217-1 wireshark -- security update
It was discovered that Wireshark, a network protocol analyzer, contained several vulnerabilities in the dissectors for PCP, ADB, NBAP, UMTS MAC, IEEE 80211, SIGCOMP, LDSS, GSM A DTAP and Q931, which result in denial of service or the execution of arbitrary code For the oldstable distribution (jessie), these problems have been fixed in version 1 ...
Amazon Linux 2: ALAS2-2020-1438
In Wireshark 260 to 262, 240 to 248, and 220 to 2216, the Radiotap dissector could crash This was addressed in epan/dissectors/packet-ieee80211-radiotap-iterc by validating iterator operations (CVE-2018-16057) In Wireshark 260 to 264 and 240 to 2410, the MMSE dissector could go into an infinite loop This was addressed in epa ...
Arch Linux Issues:
An out-of-bounds read has been found in the LDSS dissector of Wireshark <= 260 ...

References

CWE-125https://www.wireshark.org/security/wnpa-sec-2018-25.htmlhttps://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14615https://lists.debian.org/debian-lts-announce/2018/05/msg00019.htmlhttp://www.securityfocus.com/bid/104308https://www.debian.org/security/2018/dsa-4217http://www.securitytracker.com/id/1041036http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.htmlhttps://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=f177008b04a530640de835ca878892e58b826d58https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=900708https://nvd.nist.govhttps://www.debian.org/security/./dsa-4217https://security.archlinux.org/CVE-2018-11362
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2024-34413CVE-2024-34089CVE-2024-33408localSQLCVE-2024-0402CVE-2024-33910CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook