Lucene search

K

MitreCVELIST:CVE-2014-6421

HistorySep 20, 2014 - 10:00 a.m.

CVE-2014-6421

2014-09-2010:00:00

mitre

www.cve.org

6.1 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.7%

Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x before 1.10.10 allows remote attackers to cause a denial of service (application crash) via a crafted packet that leverages split memory ownership between the SDP and RTP dissectors.

References

linux.oracle.com/errata/ELSA-2014-1676

linux.oracle.com/errata/ELSA-2014-1677

lists.opensuse.org/opensuse-security-announce/2014-09/msg00033.html

lists.opensuse.org/opensuse-updates/2014-09/msg00058.html

rhn.redhat.com/errata/RHSA-2014-1676.html

rhn.redhat.com/errata/RHSA-2014-1677.html

secunia.com/advisories/60280

secunia.com/advisories/61929

secunia.com/advisories/61933

www.wireshark.org/security/wnpa-sec-2014-12.html

bugs.wireshark.org/bugzilla/show_bug.cgi?id=9920

code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=04c05a21e34cec326f1aff2f5f8a6e74e1ced984

6.1 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.7%

Related for CVELIST:CVE-2014-6421

veracode12 nvd1 debiancve1 cve1 ubuntucve1 prion1 openvas14 f52 nessus17 redhat2 oraclelinux2 fedora2 centos2 securityvulns2 mageia1 amazon1 gentoo1 suse1