7.8

CVE-2009-3241

Exploit
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version0.99.6
WiresharkWireshark Version0.99.6a
WiresharkWireshark Version0.99.7
WiresharkWireshark Version0.99.8
WiresharkWireshark Version0.99.9
WiresharkWireshark Version1.0
WiresharkWireshark Version1.0.0
WiresharkWireshark Version1.0.1
WiresharkWireshark Version1.0.2
WiresharkWireshark Version1.0.3
WiresharkWireshark Version1.0.4
WiresharkWireshark Version1.0.5
WiresharkWireshark Version1.0.6
WiresharkWireshark Version1.0.7
WiresharkWireshark Version1.0.8
WiresharkWireshark Version1.2
WiresharkWireshark Version1.2.0
WiresharkWireshark Version1.2.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 9.7% 0.949
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.html
http://secunia.com/advisories/37477
http://www.debian.org/security/2009/dsa-1942
http://secunia.com/advisories/37409
http://www.wireshark.org/docs/relnotes/wireshark-1.0.9.html
http://www.wireshark.org/security/wnpa-sec-2009-05.html
Patch
Vendor Advisory
http://secunia.com/advisories/36754
Vendor Advisory
http://www.securityfocus.com/bid/36408
Exploit
http://www.wireshark.org/docs/relnotes/wireshark-1.2.2.html
http://www.wireshark.org/security/wnpa-sec-2009-06.html
Vendor Advisory
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3986
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6162