wireshark -- PCNFSD Dissector Denial of Service Vulnerability

2009-05-2100:00:00

vuxml.freebsd.org

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

71.3%

JSON

Secunia reports:

A vulnerability has been reported in Wireshark, which can be
exploited by malicious people to cause a DoS.
The vulnerability is caused due to an error in the PCNFSD dissector
and can be exploited to cause a crash via a specially crafted PCNFSD
packet.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchethereal< 1.0.8UNKNOWN
FreeBSDanynoarchethereal-lite< 1.0.8UNKNOWN
FreeBSDanynoarchtethereal< 1.0.8UNKNOWN
FreeBSDanynoarchtethereal-lite< 1.0.8UNKNOWN
FreeBSDanynoarchwireshark< 1.0.8UNKNOWN
FreeBSDanynoarchwireshark-lite< 1.0.8UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	ethereal	< 1.0.8	UNKNOWN
FreeBSD	any	noarch	ethereal-lite	< 1.0.8	UNKNOWN
FreeBSD	any	noarch	tethereal	< 1.0.8	UNKNOWN
FreeBSD	any	noarch	tethereal-lite	< 1.0.8	UNKNOWN
FreeBSD	any	noarch	wireshark	< 1.0.8	UNKNOWN
FreeBSD	any	noarch	wireshark-lite	< 1.0.8	UNKNOWN