Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-6432HistorySep 20, 2014 - 10:55 a.m.
CVE-2014-6432
2014-09-2010:55:06
Debian Security Bug Tracker
security-tracker.debian.org
16
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
71.4%
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not prevent data overwrites during copy operations, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | wireshark | < 1.12.1+g01b65bf-1 | wireshark_1.12.1+g01b65bf-1_all.deb |
| Debian | 11 | all | wireshark | < 1.12.1+g01b65bf-1 | wireshark_1.12.1+g01b65bf-1_all.deb |
| Debian | 10 | all | wireshark | < 1.12.1+g01b65bf-1 | wireshark_1.12.1+g01b65bf-1_all.deb |
| Debian | 999 | all | wireshark | < 1.12.1+g01b65bf-1 | wireshark_1.12.1+g01b65bf-1_all.deb |
| Debian | 13 | all | wireshark | < 1.12.1+g01b65bf-1 | wireshark_1.12.1+g01b65bf-1_all.deb |
Related
cvelist
cvelist
CVE-2014-6432
2014-09-20 10:00:00
ubuntucve
ubuntucve
CVE-2014-6432
2014-09-20 00:00:00
prion
prion
Code injection
2014-09-20 10:55:00
nvd
nvd
CVE-2014-6432
2014-09-20 10:55:06
cve
cve
CVE-2014-6432
2014-09-20 10:55:06
nessus
nessus
F5 Networks BIG-IP : Multiple Wireshark vulnerabilities (K16940)
2015-07-09 00:00:00
RHEL 5 : wireshark (RHSA-2014:1677)
2014-10-22 00:00:00
Scientific Linux Security Update : wireshark on SL5.x i386/x86_64 (20141021)
2014-10-23 00:00:00
f5
f5
K16940 : Multiple Wireshark vulnerabilities
2015-09-17 00:00:00
SOL16940 - Multiple Wireshark vulnerabilities
2015-07-08 00:00:00
openvas
openvas
Wireshark DOS Vulnerability-01 (Sep 2014) - Windows
2014-09-23 00:00:00
Wireshark DOS Vulnerability-01 (Sep 2014) - Mac OS X
2014-09-23 00:00:00
Debian: Security Advisory (DSA-3049-1)
2014-10-13 00:00:00
redhat
redhat
(RHSA-2014:1677) Moderate: wireshark security update
2014-10-21 00:00:00
(RHSA-2014:1676) Moderate: wireshark security update
2014-10-21 00:00:00
osv
osv
wireshark - security update
2014-10-14 00:00:00
wireshark - security update
2015-04-22 00:00:00
oraclelinux
oraclelinux
wireshark security update
2014-10-22 00:00:00
wireshark security update
2014-10-21 00:00:00
centos
centos
wireshark security update
2014-10-21 23:32:37
wireshark security update
2014-10-21 19:49:27
debian
debian
[SECURITY] [DSA 3049-1] wireshark security update
2014-10-14 19:35:43
[SECURITY] [DLA 198-1] wireshark security update
2015-04-22 09:45:46
fedora
fedora
[SECURITY] Fedora 20 Update: wireshark-1.10.10-1.fc20
2014-09-25 10:41:18
securityvulns
securityvulns
wireshark multiple security vulnerabilities
2014-09-29 00:00:00
[ MDVSA-2014:188 ] wireshark
2014-09-29 00:00:00
mageia
mageia
Updated wireshark packages fix security vulnerabilities
2014-09-24 20:44:28
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:04:08
Denial Of Service (DoS)
2019-05-02 05:04:08
Denial Of Service (DoS)
2019-05-02 05:04:08
amazon
amazon
Medium: wireshark
2014-11-11 10:27:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2014-12-28 00:00:00
suse
suse
Security update for wireshark (important)
2014-09-27 00:04:33
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
71.4%
Related for DEBIANCVE:CVE-2014-6432