CVE-2012-4286

2012-08-1610:38:08

CWE-189

mitre

web.nvd.nist.gov

cve-2012-4286

wireshark

pcap-ng file parser

denial of service

divide-by-zero error

application crash

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.007

Percentile

79.6%

JSON

The pcapng_read_packet_block function in wiretap/pcapng.c in the pcap-ng file parser in Wireshark 1.8.x before 1.8.2 allows user-assisted remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted pcap-ng file.

Affected configurations

Nvd

Node

sunsunosMatch5.11

Node

wiresharkwiresharkMatch1.8.0

wiresharkwiresharkMatch1.8.1

VendorProductVersionCPE
sunsunos5.11cpe:2.3:o:sun:sunos:5.11:*:*:*:*:*:*:*
wiresharkwireshark1.8.0cpe:2.3:a:wireshark:wireshark:1.8.0:*:*:*:*:*:*:*
wiresharkwireshark1.8.1cpe:2.3:a:wireshark:wireshark:1.8.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	sunos	5.11	cpe:2.3:o:sun:sunos:5.11:::::::*
wireshark	wireshark	1.8.0	cpe:2.3:a:wireshark:wireshark:1.8.0:::::::*
wireshark	wireshark	1.8.1	cpe:2.3:a:wireshark:wireshark:1.8.1:::::::*