4.3

CVE-2011-2698

Exploit
Off-by-one error in the elem_cell_id_aux function in epan/dissectors/packet-ansi_a.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service (infinite loop) via an invalid packet.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version1.4.0
WiresharkWireshark Version1.4.1
WiresharkWireshark Version1.4.2
WiresharkWireshark Version1.4.3
WiresharkWireshark Version1.4.4
WiresharkWireshark Version1.4.5
WiresharkWireshark Version1.4.6
WiresharkWireshark Version1.4.7
WiresharkWireshark Version1.6.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.29% 0.809
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/48947
http://rhn.redhat.com/errata/RHSA-2013-0125.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063586.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063591.html
Patch
Exploit
http://secunia.com/advisories/45086
Vendor Advisory
http://secunia.com/advisories/45574
Vendor Advisory
http://www.wireshark.org/security/wnpa-sec-2011-10.html
http://www.wireshark.org/security/wnpa-sec-2011-11.html
http://anonsvn.wireshark.org/viewvc?view=revision&revision=37930
Patch
http://www.openwall.com/lists/oss-security/2011/07/19/5
Patch
Exploit
http://www.openwall.com/lists/oss-security/2011/07/20/2
Patch
Exploit
http://www.securityfocus.com/bid/49071
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6044
Exploit
https://bugzilla.redhat.com/show_bug.cgi?id=723215
Patch
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/69074
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14610