5
CVSSv2

CVE-2019-9214

Published: 28/02/2019 Updated: 16/05/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

A vulnerability in the Remote Packet Capture (RPCAP) dissector component of Wireshark could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on a targeted system. The vulnerability is due to insufficient validation of user-supplied input that is processed by the affected software. An attacker could exploit this vulnerability by injecting a malformed packet into a network to be processed by the affected software, or by convincing a user to open a malicious packet trace file. A successful exploit could cause the software to crash, resulting in a DoS condition. Wireshark has confirmed the vulnerability and released software updates.

Vulnerability Trend

Vendor Advisories

Impact: Moderate Public Date: 2019-02-27 CWE: CWE-476 Bugzilla: 1684115: CVE-2019-9214 wireshark: null- ...
Debian Bug report logs - #923611 wireshark: CVE-2019-9208 CVE-2019-9209 CVE-2019-9214 Package: src:wireshark; Maintainer for src:wireshark is Balint Reczey <rbalint@ubuntucom>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 2 Mar 2019 19:45:02 UTC Severity: important Tags: security, upstream Foun ...
Wireshark could be made to crash if it received specially crafted network traffic or input files ...
It was discovered that Wireshark, a network traffic analyzer, contained several vulnerabilities in the dissectors for 6LoWPAN, P_MUL, RTSE, ISAKMP, TCAP, ASN1 BER and RPCAP, which could result in denial of service For the stable distribution (stretch), these problems have been fixed in version 267-1~deb9u1 We recommend that you upgrade your wi ...
AT&T has released versions 1801-w and 1801-y for the Vyatta 5600 Details of these releases can be found at cloudibmcom/docs/infrastructure/virtual-router-appliance?topic=virtual-router-appliance-at-t-vyatta-5600-vrouter-software-patches#at-t-vyatta-5600-vrouter-software-patches ...

Mailing Lists

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4416-1 security () debian org wwwdebianorg/security/ Salvatore Bonaccorso March 24, 2019 wwwdebianorg/security/faq ...