Lucene search

PRIOn knowledge basePRION:CVE-2009-0601

HistoryFeb 16, 2009 - 8:30 p.m.

Format string

2009-02-1620:30:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0005 Low

EPSS

Percentile

15.2%

JSON

Format string vulnerability in Wireshark 0.99.8 through 1.0.5 on non-Windows platforms allows local users to cause a denial of service (application crash) via format string specifiers in the HOME environment variable.

CPENameOperatorVersion
wiresharkeq0.99.8
wiresharkeq1.0.0
wiresharkeq1.0.1
wiresharkeq1.0.2
wiresharkeq1.0.3
wiresharkeq1.0.4
wiresharkeq1.0.5

Name	Operator	Version
wireshark	eq	0.99.8
wireshark	eq	1.0.0
wireshark	eq	1.0.1
wireshark	eq	1.0.2
wireshark	eq	1.0.3
wireshark	eq	1.0.4
wireshark	eq	1.0.5

References

lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html

secunia.com/advisories/34264

wiki.rpath.com/Advisories:rPSA-2009-0040

www.securityfocus.com/archive/1/501763/100/0/threaded

www.securityfocus.com/bid/33690

www.securitytracker.com/id?1021697

www.vupen.com/english/advisories/2009/0370

bugs.wireshark.org/bugzilla/show_bug.cgi?id=3150

issues.rpath.com/browse/RPL-2984

www.wireshark.org/security/wnpa-sec-2009-01.html

6.5 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0005 Low

EPSS

Percentile

15.2%

JSON

Related for PRION:CVE-2009-0601