5

CVE-2010-4301

epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted ZCL packet, related to Discover Attributes.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version1.4.0
WiresharkWireshark Version1.4.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 9.29% 0.947
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://secunia.com/advisories/43068
http://www.vupen.com/english/advisories/2011/0212
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html
http://secunia.com/advisories/42877
http://www.vupen.com/english/advisories/2011/0076
http://secunia.com/advisories/42290
Vendor Advisory
http://www.vupen.com/english/advisories/2010/3038
Vendor Advisory
http://www.wireshark.org/security/wnpa-sec-2010-14.html
Vendor Advisory
http://osvdb.org/69355
http://www.exploit-db.com/exploits/15973
http://www.securityfocus.com/bid/44986
https://bugs.wireshark.org/bugzilla/attachment.cgi?id=5315&action=edit
Patch
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5303
Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14713