FreeBSD3EBB2DC8-4609-11E1-9F47-00E0815B8DA8Wireshark -- Multiple vulnerabilities
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.034 Low
EPSS
Percentile
91.3%
Wireshark reports:
Laurent Butti discovered that Wireshark failed to properly check
record sizes for many packet capture file formats
Wireshark could dereference a NULL pointer and crash.
The RLC dissector could overflow a buffer.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | wireshark | = 1.4 | UNKNOWN |
| FreeBSD | any | noarch | wireshark | < 1.4.11 | UNKNOWN |
| FreeBSD | any | noarch | wireshark-lite | = 1.4 | UNKNOWN |
| FreeBSD | any | noarch | wireshark-lite | < 1.4.11 | UNKNOWN |
| FreeBSD | any | noarch | tshark | = 1.4 | UNKNOWN |
| FreeBSD | any | noarch | tshark | < 1.4.11 | UNKNOWN |
| FreeBSD | any | noarch | tshark-lite | = 1.4 | UNKNOWN |
| FreeBSD | any | noarch | tshark-lite | < 1.4.11 | UNKNOWN |
References
www.wireshark.org/security/wnpa-sec-2012-01.html
www.wireshark.org/security/wnpa-sec-2012-02.html
www.wireshark.org/security/wnpa-sec-2012-03.html
bugs.wireshark.org/bugzilla/show_bug.cgi?id=6391
bugs.wireshark.org/bugzilla/show_bug.cgi?id=6634
bugs.wireshark.org/bugzilla/show_bug.cgi?id=6663
bugs.wireshark.org/bugzilla/show_bug.cgi?id=6666
bugs.wireshark.org/bugzilla/show_bug.cgi?id=6667
bugs.wireshark.org/bugzilla/show_bug.cgi?id=6668
bugs.wireshark.org/bugzilla/show_bug.cgi?id=6669
bugs.wireshark.org/bugzilla/show_bug.cgi?id=6670
Related
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.034 Low
EPSS
Percentile
91.3%