CVE-2008-3934

2008-09-0419:41:00

CWE-20

redhat

web.nvd.nist.gov

vulnerability

wireshark

ethereal

denial of service

crash

tektronix

file

nvd

cve-2008-3934

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.8

Confidence

Low

EPSS

0.001

Percentile

48.8%

JSON

Unspecified vulnerability in Wireshark (formerly Ethereal) 0.99.6 through 1.0.2 allows attackers to cause a denial of service (crash) via a crafted Tektronix .rf5 file.

Affected configurations

Nvd

Node

wiresharkwiresharkMatch0.99.6

wiresharkwiresharkMatch0.99.6a

wiresharkwiresharkMatch0.99.7

wiresharkwiresharkMatch0.99.8

wiresharkwiresharkMatch1.0.0

wiresharkwiresharkMatch1.0.1

wiresharkwiresharkMatch1.0.2

VendorProductVersionCPE
wiresharkwireshark1.0.2cpe:/a:wireshark:wireshark:1.0.2:::
wiresharkwireshark1.0.1cpe:/a:wireshark:wireshark:1.0.1:::
wiresharkwireshark1.0.0cpe:/a:wireshark:wireshark:1.0.0:::
wiresharkwireshark0.99.6cpe:/a:wireshark:wireshark:0.99.6:::
wiresharkwireshark0.99.8cpe:/a:wireshark:wireshark:0.99.8:::
wiresharkwireshark0.99.7cpe:/a:wireshark:wireshark:0.99.7:::
wiresharkwireshark0.99.6acpe:/a:wireshark:wireshark:0.99.6a:::

Vendor	Product	Version	CPE
wireshark	wireshark	1.0.2	cpe:/a:wireshark:wireshark:1.0.2:::
wireshark	wireshark	1.0.1	cpe:/a:wireshark:wireshark:1.0.1:::
wireshark	wireshark	1.0.0	cpe:/a:wireshark:wireshark:1.0.0:::
wireshark	wireshark	0.99.6	cpe:/a:wireshark:wireshark:0.99.6:::
wireshark	wireshark	0.99.8	cpe:/a:wireshark:wireshark:0.99.8:::
wireshark	wireshark	0.99.7	cpe:/a:wireshark:wireshark:0.99.7:::
wireshark	wireshark	0.99.6a	cpe:/a:wireshark:wireshark:0.99.6a:::