CVE-2008-4684

2008-10-2200:00:00

ubuntu.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.9%

JSON

packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly handle
exceptions thrown by post dissectors, which allows remote attackers to
cause a denial of service (application crash) via a certain series of
packets, as demonstrated by enabling the (1) PRP or (2) MATE post
dissector.

OSVersionArchitecturePackageVersionFilename
ubuntu7.10noarchwireshark< 0.99.6rel-3ubuntu0.4UNKNOWN
ubuntu8.04noarchwireshark< 1.0.0-1ubuntu0.2UNKNOWN
ubuntu8.10noarchwireshark< 1.0.3-1ubuntu2.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	7.10	noarch	wireshark	< 0.99.6rel-3ubuntu0.4	UNKNOWN
ubuntu	8.04	noarch	wireshark	< 1.0.0-1ubuntu0.2	UNKNOWN
ubuntu	8.10	noarch	wireshark	< 1.0.3-1ubuntu2.2	UNKNOWN