[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

251782

 
 

909

 
 

196543

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2011-1956Date: (C)2011-06-06   (M)2023-12-22


The bytes_repr_len function in Wireshark 1.4.5 uses an incorrect pointer argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via arbitrary TCP traffic.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECUNIA-44449
http://openwall.com/lists/oss-security/2011/05/31/19
http://openwall.com/lists/oss-security/2011/06/01/9
http://www.wireshark.org/docs/relnotes/wireshark-1.4.6.html
http://www.wireshark.org/news/20110418.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5837
oval:org.mitre.oval:def:14943
wireshark-desegmenttcp-dos(67789)

CPE    1
cpe:/a:wireshark:wireshark:1.4.5
OVAL    2
oval:org.secpod.oval:def:1259
oval:org.secpod.oval:def:40838

© SecPod Technologies