Lucene search

PRIOn knowledge basePRION:CVE-2011-4101

HistoryNov 03, 2011 - 3:55 p.m.

Null pointer dereference

2011-11-0315:55:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

75.7%

JSON

The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.

CPENameOperatorVersion
wiresharkeq1.4.7
wiresharkeq1.4.2
wiresharkeq1.4.0
wiresharkeq1.4.5
wiresharkeq1.4.4
wiresharkeq1.4.9
wiresharkeq1.4.6
wiresharkeq1.4.3
wiresharkeq1.4.1
wiresharkeq1.4.8

Name	Operator	Version
wireshark	eq	1.4.7
wireshark	eq	1.4.2
wireshark	eq	1.4.0
wireshark	eq	1.4.5
wireshark	eq	1.4.4
wireshark	eq	1.4.9
wireshark	eq	1.4.6
wireshark	eq	1.4.3
wireshark	eq	1.4.1
wireshark	eq	1.4.8

Rows per page:

1-10 of 131

References

openwall.com/lists/oss-security/2011/11/01/9

osvdb.org/76769

secunia.com/advisories/46644

www.securityfocus.com/bid/50481

anonsvn.wireshark.org/viewvc?view=revision&revision=39500

bugs.wireshark.org/bugzilla/show_bug.cgi?id=6476

bugzilla.redhat.com/show_bug.cgi?id=750645

exchange.xforce.ibmcloud.com/vulnerabilities/71091

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14760

www.wireshark.org/security/wnpa-sec-2011-18.html

6.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

75.7%

JSON

Related for PRION:CVE-2011-4101