Lucene search

K
cve[email protected]CVE-2013-4927
HistoryJul 30, 2013 - 12:56 a.m.

CVE-2013-4927

2013-07-3000:56:15
CWE-189
web.nvd.nist.gov
37
cve-2013-4927
wireshark
bluetooth
sdp
dissector
denial of service
nvd
vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

5.4 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.5%

Integer signedness error in the get_type_length function in epan/dissectors/packet-btsdp.c in the Bluetooth SDP dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet.

Affected configurations

NVD
Node
wiresharkwiresharkMatch1.8.0
OR
wiresharkwiresharkMatch1.8.1
OR
wiresharkwiresharkMatch1.8.2
OR
wiresharkwiresharkMatch1.8.3
OR
wiresharkwiresharkMatch1.8.4
OR
wiresharkwiresharkMatch1.8.5
OR
wiresharkwiresharkMatch1.8.6
OR
wiresharkwiresharkMatch1.8.7
OR
wiresharkwiresharkMatch1.8.8
Node
wiresharkwiresharkMatch1.10.0

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

5.4 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.5%