Lucene search

MitreCVE-2009-1210

HistoryApr 01, 2009 - 10:30 a.m.

CVE-2009-1210

2009-04-0110:30:00

CWE-134

mitre

web.nvd.nist.gov

wireshark

pn-dcp

format string

vulnerability

cve-2009-1210

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.939

Percentile

99.1%

JSON

Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

wiresharkwiresharkRange≤1.0.5

wiresharkwiresharkMatch0.6

wiresharkwiresharkMatch0.7.9

wiresharkwiresharkMatch0.8.16

wiresharkwiresharkMatch0.8.19

wiresharkwiresharkMatch0.9.5

wiresharkwiresharkMatch0.9.7

wiresharkwiresharkMatch0.9.8

wiresharkwiresharkMatch0.9.10

wiresharkwiresharkMatch0.9.14

wiresharkwiresharkMatch0.10

wiresharkwiresharkMatch0.10.1

wiresharkwiresharkMatch0.10.2

wiresharkwiresharkMatch0.10.3

wiresharkwiresharkMatch0.10.4

wiresharkwiresharkMatch0.10.5

wiresharkwiresharkMatch0.10.6

wiresharkwiresharkMatch0.10.7

wiresharkwiresharkMatch0.10.8

wiresharkwiresharkMatch0.10.9

wiresharkwiresharkMatch0.10.10

wiresharkwiresharkMatch0.10.11

wiresharkwiresharkMatch0.10.12

wiresharkwiresharkMatch0.10.13

wiresharkwiresharkMatch0.10.14

wiresharkwiresharkMatch0.99

wiresharkwiresharkMatch0.99.0

wiresharkwiresharkMatch0.99.1

wiresharkwiresharkMatch0.99.2

wiresharkwiresharkMatch0.99.3

wiresharkwiresharkMatch0.99.4

wiresharkwiresharkMatch0.99.5

wiresharkwiresharkMatch0.99.6

wiresharkwiresharkMatch0.99.6a

wiresharkwiresharkMatch0.99.7

wiresharkwiresharkMatch0.99.8

wiresharkwiresharkMatch1.0

wiresharkwiresharkMatch1.0.0

wiresharkwiresharkMatch1.0.1

wiresharkwiresharkMatch1.0.2

wiresharkwiresharkMatch1.0.3

wiresharkwiresharkMatch1.0.4

VendorProductVersionCPE
wiresharkwireshark*cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*
wiresharkwireshark0.6cpe:2.3:a:wireshark:wireshark:0.6:*:*:*:*:*:*:*
wiresharkwireshark0.7.9cpe:2.3:a:wireshark:wireshark:0.7.9:*:*:*:*:*:*:*
wiresharkwireshark0.8.16cpe:2.3:a:wireshark:wireshark:0.8.16:*:*:*:*:*:*:*
wiresharkwireshark0.8.19cpe:2.3:a:wireshark:wireshark:0.8.19:*:*:*:*:*:*:*
wiresharkwireshark0.9.5cpe:2.3:a:wireshark:wireshark:0.9.5:*:*:*:*:*:*:*
wiresharkwireshark0.9.7cpe:2.3:a:wireshark:wireshark:0.9.7:*:*:*:*:*:*:*
wiresharkwireshark0.9.8cpe:2.3:a:wireshark:wireshark:0.9.8:*:*:*:*:*:*:*
wiresharkwireshark0.9.10cpe:2.3:a:wireshark:wireshark:0.9.10:*:*:*:*:*:*:*
wiresharkwireshark0.9.14cpe:2.3:a:wireshark:wireshark:0.9.14:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wireshark	wireshark	*	cpe:2.3:a:wireshark:wireshark::::::::
wireshark	wireshark	0.6	cpe:2.3:a:wireshark:wireshark:0.6:::::::*
wireshark	wireshark	0.7.9	cpe:2.3:a:wireshark:wireshark:0.7.9:::::::*
wireshark	wireshark	0.8.16	cpe:2.3:a:wireshark:wireshark:0.8.16:::::::*
wireshark	wireshark	0.8.19	cpe:2.3:a:wireshark:wireshark:0.8.19:::::::*
wireshark	wireshark	0.9.5	cpe:2.3:a:wireshark:wireshark:0.9.5:::::::*
wireshark	wireshark	0.9.7	cpe:2.3:a:wireshark:wireshark:0.9.7:::::::*
wireshark	wireshark	0.9.8	cpe:2.3:a:wireshark:wireshark:0.9.8:::::::*
wireshark	wireshark	0.9.10	cpe:2.3:a:wireshark:wireshark:0.9.10:::::::*
wireshark	wireshark	0.9.14	cpe:2.3:a:wireshark:wireshark:0.9.14:::::::*