CVE-2012-6054

2012-12-0511:57:19

CWE-189

mitre

web.nvd.nist.gov

cve-2012-6054

sflow dissector

wireshark

dos

remote attackers

packet

ip address type

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.4

Confidence

High

EPSS

0.004

Percentile

74.1%

JSON

The dissect_sflow_245_address_type function in epan/dissectors/packet-sflow.c in the sFlow dissector in Wireshark 1.8.x before 1.8.4 does not properly handle length calculations for an invalid IP address type, which allows remote attackers to cause a denial of service (infinite loop) via a packet that is neither IPv4 nor IPv6.

Affected configurations

Nvd

Node

wiresharkwiresharkMatch1.8.0

wiresharkwiresharkMatch1.8.1

wiresharkwiresharkMatch1.8.2

wiresharkwiresharkMatch1.8.3

VendorProductVersionCPE
wiresharkwireshark1.8.0cpe:2.3:a:wireshark:wireshark:1.8.0:*:*:*:*:*:*:*
wiresharkwireshark1.8.1cpe:2.3:a:wireshark:wireshark:1.8.1:*:*:*:*:*:*:*
wiresharkwireshark1.8.2cpe:2.3:a:wireshark:wireshark:1.8.2:*:*:*:*:*:*:*
wiresharkwireshark1.8.3cpe:2.3:a:wireshark:wireshark:1.8.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wireshark	wireshark	1.8.0	cpe:2.3:a:wireshark:wireshark:1.8.0:::::::*
wireshark	wireshark	1.8.1	cpe:2.3:a:wireshark:wireshark:1.8.1:::::::*
wireshark	wireshark	1.8.2	cpe:2.3:a:wireshark:wireshark:1.8.2:::::::*
wireshark	wireshark	1.8.3	cpe:2.3:a:wireshark:wireshark:1.8.3:::::::*