Lucene search

K
cve[email protected]CVE-2012-5238
HistoryOct 04, 2012 - 7:55 p.m.

CVE-2012-5238

2012-10-0419:55:00
web.nvd.nist.gov
26
wireshark
cve-2012-5238
ppp dissector
denial of service
vulnerability
nvd

6.4 Medium

AI Score

Confidence

Low

3.3 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

56.0%

epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.3 uses incorrect OUI data structures during the decoding of (1) PPP and (2) LCP data, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a malformed packet.

Affected configurations

NVD
Node
wiresharkwiresharkMatch1.8.0
OR
wiresharkwiresharkMatch1.8.1
OR
wiresharkwiresharkMatch1.8.2

6.4 Medium

AI Score

Confidence

Low

3.3 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

56.0%