Lucene search

[email protected]NVD:CVE-2012-4288

HistoryAug 16, 2012 - 10:38 a.m.

CVE-2012-4288

2012-08-1610:38:08

CWE-189

[email protected]

web.nvd.nist.gov

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

Low

EPSS

0.004

Percentile

72.2%

JSON

Integer overflow in the dissect_xtp_ecntl function in epan/dissectors/packet-xtp.c in the XTP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop or application crash) via a large value for a span length.

Affected configurations

Nvd

Node

opensuseopensuseMatch11.4

opensuseopensuseMatch12.1

sunsunosMatch5.11

Node

wiresharkwiresharkMatch1.8.0

wiresharkwiresharkMatch1.8.1

Node

wiresharkwiresharkMatch1.6.0

wiresharkwiresharkMatch1.6.1

wiresharkwiresharkMatch1.6.2

wiresharkwiresharkMatch1.6.3

wiresharkwiresharkMatch1.6.4

wiresharkwiresharkMatch1.6.5

wiresharkwiresharkMatch1.6.6

wiresharkwiresharkMatch1.6.7

wiresharkwiresharkMatch1.6.8

wiresharkwiresharkMatch1.6.9

Node

wiresharkwiresharkMatch1.4.0

wiresharkwiresharkMatch1.4.1

wiresharkwiresharkMatch1.4.2

wiresharkwiresharkMatch1.4.3

wiresharkwiresharkMatch1.4.4

wiresharkwiresharkMatch1.4.5

wiresharkwiresharkMatch1.4.6

wiresharkwiresharkMatch1.4.7

wiresharkwiresharkMatch1.4.8

wiresharkwiresharkMatch1.4.9

wiresharkwiresharkMatch1.4.10

wiresharkwiresharkMatch1.4.11

wiresharkwiresharkMatch1.4.12

wiresharkwiresharkMatch1.4.13

wiresharkwiresharkMatch1.4.14

VendorProductVersionCPE
opensuseopensuse11.4cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
opensuseopensuse12.1cpe:2.3:o:opensuse:opensuse:12.1:*:*:*:*:*:*:*
sunsunos5.11cpe:2.3:o:sun:sunos:5.11:*:*:*:*:*:*:*
wiresharkwireshark1.8.0cpe:2.3:a:wireshark:wireshark:1.8.0:*:*:*:*:*:*:*
wiresharkwireshark1.8.1cpe:2.3:a:wireshark:wireshark:1.8.1:*:*:*:*:*:*:*
wiresharkwireshark1.6.0cpe:2.3:a:wireshark:wireshark:1.6.0:*:*:*:*:*:*:*
wiresharkwireshark1.6.1cpe:2.3:a:wireshark:wireshark:1.6.1:*:*:*:*:*:*:*
wiresharkwireshark1.6.2cpe:2.3:a:wireshark:wireshark:1.6.2:*:*:*:*:*:*:*
wiresharkwireshark1.6.3cpe:2.3:a:wireshark:wireshark:1.6.3:*:*:*:*:*:*:*
wiresharkwireshark1.6.4cpe:2.3:a:wireshark:wireshark:1.6.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
opensuse	opensuse	11.4	cpe:2.3:o:opensuse:opensuse:11.4:::::::*
opensuse	opensuse	12.1	cpe:2.3:o:opensuse:opensuse:12.1:::::::*
sun	sunos	5.11	cpe:2.3:o:sun:sunos:5.11:::::::*
wireshark	wireshark	1.8.0	cpe:2.3:a:wireshark:wireshark:1.8.0:::::::*
wireshark	wireshark	1.8.1	cpe:2.3:a:wireshark:wireshark:1.8.1:::::::*
wireshark	wireshark	1.6.0	cpe:2.3:a:wireshark:wireshark:1.6.0:::::::*
wireshark	wireshark	1.6.1	cpe:2.3:a:wireshark:wireshark:1.6.1:::::::*
wireshark	wireshark	1.6.2	cpe:2.3:a:wireshark:wireshark:1.6.2:::::::*
wireshark	wireshark	1.6.3	cpe:2.3:a:wireshark:wireshark:1.6.3:::::::*
wireshark	wireshark	1.6.4	cpe:2.3:a:wireshark:wireshark:1.6.4:::::::*