[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-6451Date: (C)2007-12-19   (M)2023-12-22


Unspecified vulnerability in the CIP dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger allocation of large amounts of memory.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
http://www.securityfocus.com/archive/1/485792/100/0/threaded
BID-27071
SECUNIA-27777
SECUNIA-28288
SECUNIA-28304
SECUNIA-28315
SECUNIA-28325
SECUNIA-28564
SECUNIA-28583
SECUNIA-29048
DSA-1446
GLSA-200712-23
MDVSA-2008:001
MDVSA-2008:1
RHSA-2008:0058
RHSA-2008:0059
SUSE-SR:2008:004
http://bugs.gentoo.org/show_bug.cgi?id=199958
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004
http://www.wireshark.org/security/wnpa-sec-2007-03.html
https://issues.rpath.com/browse/RPL-1975
oval:org.mitre.oval:def:9685
wireshark-cip-dissector-dos(39187)

CPE    5
cpe:/a:wireshark:wireshark:0.99.6
cpe:/a:wireshark:wireshark:0.99.4
cpe:/a:wireshark:wireshark:0.99.5
cpe:/a:wireshark:wireshark:0.99.2
...
CWE    1
CWE-399
OVAL    2
oval:org.secpod.oval:def:301566
oval:org.mitre.oval:def:8307

© SecPod Technologies