4.3

CVE-2008-1563

Exploit
The "decode as" feature in packet-bssap.c in the SCCP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version0.99.2
WiresharkWireshark Version0.99.3
WiresharkWireshark Version0.99.4
WiresharkWireshark Version0.99.5
WiresharkWireshark Version0.99.6
WiresharkWireshark Version0.99.7
WiresharkWireshark Version0.99.8
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.78% 0.886
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00005.html
http://secunia.com/advisories/29622
http://secunia.com/advisories/29736
http://secunia.com/advisories/32091
http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm
http://www.redhat.com/support/errata/RHSA-2008-0890.html
http://www.vupen.com/english/advisories/2008/2773
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00140.html
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00228.html
http://secunia.com/advisories/29569
Vendor Advisory
http://secunia.com/advisories/29695
http://secunia.com/advisories/29971
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0138
http://www.gentoo.org/security/en/glsa/glsa-200805-05.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:091
http://www.securityfocus.com/archive/1/490487/100/0/threaded
http://www.securityfocus.com/bid/28485
Exploit
http://www.securitytracker.com/id?1019728
http://www.vupen.com/english/advisories/2008/1007/references
http://www.wireshark.org/security/wnpa-sec-2008-02.html
https://issues.rpath.com/browse/RPL-2418
https://exchange.xforce.ibmcloud.com/vulnerabilities/41517
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10238
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15074