5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.004 Low
EPSS
Percentile
69.0%
CVE-2014-8710 (out-of-bounds read)
Out-of-bounds read flaw in the SigComp dissector (sigcomp-udvm) leads to
denial of service while processing malformed packets.
CVE-2014-8711 (out-of-bounds read)
The AMQP dissector is seeing a large value in the capture file for what
it thinks should be a field specifying the number of elements in an
array, resulting in undetected overflow (wrapping).
CVE-2014-8712 (stack buffer overflow)
An issue in the NCP dissector while constructing strings may lead to
incorrect data length, resulting in stack buffer overflow and denial of
service.
CVE-2014-8713 (denial of service)
An issue in the NCP dissector may lead to denial of service while
accessing an uninitialized buffer.
CVE-2014-8714 (denial of service)
A missing exit when the offset is not incremented in the tn5250
dissector is leading to an endless loop, resulting in denial of service.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
any | any | any | wireshark-qt | < 1.12.2-1 | UNKNOWN |
access.redhat.com/security/cve/CVE-2014-8710
access.redhat.com/security/cve/CVE-2014-8711
access.redhat.com/security/cve/CVE-2014-8712
access.redhat.com/security/cve/CVE-2014-8713
access.redhat.com/security/cve/CVE-2014-8714
bugs.wireshark.org/bugzilla/show_bug.cgi?id=10552
bugs.wireshark.org/bugzilla/show_bug.cgi?id=10582
bugs.wireshark.org/bugzilla/show_bug.cgi?id=10596
bugs.wireshark.org/bugzilla/show_bug.cgi?id=10628
bugs.wireshark.org/bugzilla/show_bug.cgi?id=10662
www.wireshark.org/lists/wireshark-users/201411/msg00004.html
www.wireshark.org/security/wnpa-sec-2014-20.html
www.wireshark.org/security/wnpa-sec-2014-21.html
www.wireshark.org/security/wnpa-sec-2014-22.html
www.wireshark.org/security/wnpa-sec-2014-23.html