5

CVE-2008-5285

Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of service via a long SMTP request, which triggers an infinite loop.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version <= 1.0.4
WiresharkWireshark Version0.6
WiresharkWireshark Version0.7.9
WiresharkWireshark Version0.8.16
WiresharkWireshark Version0.8.19
WiresharkWireshark Version0.9.5
WiresharkWireshark Version0.9.7
WiresharkWireshark Version0.9.8
WiresharkWireshark Version0.9.10
WiresharkWireshark Version0.9.14
WiresharkWireshark Version0.10
WiresharkWireshark Version0.10.1
WiresharkWireshark Version0.10.2
WiresharkWireshark Version0.10.3
WiresharkWireshark Version0.10.4
WiresharkWireshark Version0.10.5
WiresharkWireshark Version0.10.6
WiresharkWireshark Version0.10.7
WiresharkWireshark Version0.10.8
WiresharkWireshark Version0.10.9
WiresharkWireshark Version0.10.10
WiresharkWireshark Version0.10.11
WiresharkWireshark Version0.10.12
WiresharkWireshark Version0.10.13
WiresharkWireshark Version0.10.14
WiresharkWireshark Version0.99
WiresharkWireshark Version0.99.0
WiresharkWireshark Version0.99.1
WiresharkWireshark Version0.99.2
WiresharkWireshark Version0.99.3
WiresharkWireshark Version0.99.4
WiresharkWireshark Version0.99.5
WiresharkWireshark Version0.99.6
WiresharkWireshark Version0.99.6a
WiresharkWireshark Version0.99.7
WiresharkWireshark Version0.99.8
WiresharkWireshark Version1.0
WiresharkWireshark Version1.0.0
WiresharkWireshark Version1.0.1
WiresharkWireshark Version1.0.2
WiresharkWireshark Version1.0.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2% 0.782
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/34144
http://support.avaya.com/elmodocs2/security/ASA-2009-082.htm
http://wiki.rpath.com/Advisories:rPSA-2008-0336
http://www.redhat.com/support/errata/RHSA-2009-0313.html
http://www.securityfocus.com/archive/1/499154/100/0/threaded
http://lists.grok.org.uk/pipermail/full-disclosure/2008-November/065840.html
http://secunia.com/advisories/32840
Patch
Vendor Advisory
http://securityreason.com/securityalert/4663
http://www.mandriva.com/security/advisories?name=MDVSA-2008:242
http://www.openwall.com/lists/oss-security/2008/11/24/1
http://www.securityfocus.com/archive/1/498562/100/0/threaded
http://www.securityfocus.com/bid/32422
http://www.securitytracker.com/id?1021275
http://www.vupen.com/english/advisories/2008/3231
http://www.wireshark.org/security/wnpa-sec-2008-07.html
https://bugzilla.redhat.com/show_bug.cgi?id=472737
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11351