4.3

CVE-2011-1143

epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark before 1.4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted .pcap file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version <= 1.4.3
WiresharkWireshark Version0.99.2
WiresharkWireshark Version0.99.3
WiresharkWireshark Version0.99.4
WiresharkWireshark Version0.99.5
WiresharkWireshark Version0.99.6
WiresharkWireshark Version0.99.7
WiresharkWireshark Version0.99.8
WiresharkWireshark Version1.0.0
WiresharkWireshark Version1.0.1
WiresharkWireshark Version1.0.2
WiresharkWireshark Version1.0.3
WiresharkWireshark Version1.0.4
WiresharkWireshark Version1.0.5
WiresharkWireshark Version1.0.6
WiresharkWireshark Version1.0.7
WiresharkWireshark Version1.0.8
WiresharkWireshark Version1.0.9
WiresharkWireshark Version1.0.10
WiresharkWireshark Version1.0.11
WiresharkWireshark Version1.0.12
WiresharkWireshark Version1.0.13
WiresharkWireshark Version1.0.14
WiresharkWireshark Version1.0.15
WiresharkWireshark Version1.0.16
WiresharkWireshark Version1.2
WiresharkWireshark Version1.2.0
WiresharkWireshark Version1.2.1
WiresharkWireshark Version1.2.2
WiresharkWireshark Version1.2.3
WiresharkWireshark Version1.2.4
WiresharkWireshark Version1.2.5
WiresharkWireshark Version1.2.6
WiresharkWireshark Version1.2.7
WiresharkWireshark Version1.2.8
WiresharkWireshark Version1.2.9
WiresharkWireshark Version1.2.10
WiresharkWireshark Version1.2.11
WiresharkWireshark Version1.2.12
WiresharkWireshark Version1.2.13
WiresharkWireshark Version1.2.14
WiresharkWireshark Version1.2.15
WiresharkWireshark Version1.4.0
WiresharkWireshark Version1.4.1
WiresharkWireshark Version1.4.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 8.59% 0.944
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.html
http://secunia.com/advisories/43759
http://secunia.com/advisories/43821
http://www.kb.cert.org/vuls/id/215900
US Government Resource
http://www.redhat.com/support/errata/RHSA-2011-0370.html
http://www.vupen.com/english/advisories/2011/0626
http://www.vupen.com/english/advisories/2011/0719
http://www.securitytracker.com/id?1025148
http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html
Patch
http://secunia.com/advisories/44169
https://hermes.opensuse.org/messages/8086844
http://anonsvn.wireshark.org/viewvc?view=rev&revision=34018
Patch
http://secunia.com/advisories/48947
http://www.securityfocus.com/bid/46796
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5157
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16209