4.3

CVE-2011-1956

Exploit
The bytes_repr_len function in Wireshark 1.4.5 uses an incorrect pointer argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via arbitrary TCP traffic.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version1.4.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.85% 0.922
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://openwall.com/lists/oss-security/2011/05/31/19
Exploit
http://openwall.com/lists/oss-security/2011/06/01/9
Exploit
http://secunia.com/advisories/44449
http://www.wireshark.org/docs/relnotes/wireshark-1.4.6.html
Patch
http://www.wireshark.org/news/20110418.html
Patch
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5837
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/67789
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14943