CVE-2008-4682

2008-10-2218:00:01

CWE-20

mitre

web.nvd.nist.gov

wireshark

remote

dos

cve-2008-4682

security vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.1

Confidence

Low

EPSS

0.016

Percentile

87.4%

JSON

wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application abort) via a malformed Tamos CommView capture file (aka .ncf file) with an “unknown/unexpected packet type” that triggers a failed assertion.

Affected configurations

Nvd

Node

wiresharkwiresharkMatch0.99.7

wiresharkwiresharkMatch0.99.8

wiresharkwiresharkMatch1.0

wiresharkwiresharkMatch1.0.0

wiresharkwiresharkMatch1.0.1

wiresharkwiresharkMatch1.0.2

wiresharkwiresharkMatch1.0.3

VendorProductVersionCPE
wiresharkwireshark1.0.2cpe:/a:wireshark:wireshark:1.0.2:::
wiresharkwireshark1.0cpe:/a:wireshark:wireshark:1.0:::
wiresharkwireshark1.0.0cpe:/a:wireshark:wireshark:1.0.0:::
wiresharkwireshark0.99.8cpe:/a:wireshark:wireshark:0.99.8:::
wiresharkwireshark1.0.3cpe:/a:wireshark:wireshark:1.0.3:::
wiresharkwireshark0.99.7cpe:/a:wireshark:wireshark:0.99.7:::
wiresharkwireshark1.0.1cpe:/a:wireshark:wireshark:1.0.1:::

Vendor	Product	Version	CPE
wireshark	wireshark	1.0.2	cpe:/a:wireshark:wireshark:1.0.2:::
wireshark	wireshark	1.0	cpe:/a:wireshark:wireshark:1.0:::
wireshark	wireshark	1.0.0	cpe:/a:wireshark:wireshark:1.0.0:::
wireshark	wireshark	0.99.8	cpe:/a:wireshark:wireshark:0.99.8:::
wireshark	wireshark	1.0.3	cpe:/a:wireshark:wireshark:1.0.3:::
wireshark	wireshark	0.99.7	cpe:/a:wireshark:wireshark:0.99.7:::
wireshark	wireshark	1.0.1	cpe:/a:wireshark:wireshark:1.0.1:::