5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.004 Low
EPSS
Percentile
68.4%
Several remote vulnerabilities have been discovered in the Wireshark
network traffic analyzer, which may lead to denial of service. The
Common Vulnerabilities and Exposures project identifies the following
problems:
The RPL dissector could be tricked into an infinite loop.
The CIP dissector could be tricked into excessive memory
allocation.
For the old stable distribution (sarge), these problems have been fixed in
version 0.10.10-2sarge11. (In Sarge Wireshark used to be called Ethereal).
For the stable distribution (etch), these problems have been fixed in
version 0.99.4-5.etch.2.
For the unstable distribution (sid), these problems have been fixed in
version 0.99.7-1.
We recommend that you upgrade your wireshark packages.