4.3

CVE-2011-4101

The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version1.4.0
WiresharkWireshark Version1.4.1
WiresharkWireshark Version1.4.2
WiresharkWireshark Version1.4.3
WiresharkWireshark Version1.4.4
WiresharkWireshark Version1.4.5
WiresharkWireshark Version1.4.6
WiresharkWireshark Version1.4.7
WiresharkWireshark Version1.4.8
WiresharkWireshark Version1.4.9
WiresharkWireshark Version1.6.0
WiresharkWireshark Version1.6.1
WiresharkWireshark Version1.6.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.28% 0.809
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://openwall.com/lists/oss-security/2011/11/01/9
http://secunia.com/advisories/46644
http://anonsvn.wireshark.org/viewvc?view=revision&revision=39500
Patch
http://osvdb.org/76769
http://www.securityfocus.com/bid/50481
http://www.wireshark.org/security/wnpa-sec-2011-18.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6476
https://bugzilla.redhat.com/show_bug.cgi?id=750645
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/71091
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14760