CVE-2013-4927

2013-07-3000:56:15

CWE-189

[email protected]

web.nvd.nist.gov

cve-2013-4927

wireshark

bluetooth

sdp

dissector

denial of service

nvd

vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

5.4 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.5%

JSON

Integer signedness error in the get_type_length function in epan/dissectors/packet-btsdp.c in the Bluetooth SDP dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet.

Affected configurations

NVD

Node

wiresharkwiresharkMatch1.8.0

wiresharkwiresharkMatch1.8.1

wiresharkwiresharkMatch1.8.2

wiresharkwiresharkMatch1.8.3

wiresharkwiresharkMatch1.8.4

wiresharkwiresharkMatch1.8.5

wiresharkwiresharkMatch1.8.6

wiresharkwiresharkMatch1.8.7

wiresharkwiresharkMatch1.8.8

Node

wiresharkwiresharkMatch1.10.0

CPENameOperatorVersion
wireshark:wiresharkwiresharkeq1.8.0
wireshark:wiresharkwiresharkeq1.8.1
wireshark:wiresharkwiresharkeq1.8.2
wireshark:wiresharkwiresharkeq1.8.3
wireshark:wiresharkwiresharkeq1.8.4
wireshark:wiresharkwiresharkeq1.8.5
wireshark:wiresharkwiresharkeq1.8.6
wireshark:wiresharkwiresharkeq1.8.7
wireshark:wiresharkwiresharkeq1.8.8

CPE	Name	Operator	Version
wireshark:wireshark	wireshark	eq	1.8.0
wireshark:wireshark	wireshark	eq	1.8.1
wireshark:wireshark	wireshark	eq	1.8.2
wireshark:wireshark	wireshark	eq	1.8.3
wireshark:wireshark	wireshark	eq	1.8.4
wireshark:wireshark	wireshark	eq	1.8.5
wireshark:wireshark	wireshark	eq	1.8.6
wireshark:wireshark	wireshark	eq	1.8.7
wireshark:wireshark	wireshark	eq	1.8.8