Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-7112
HistoryDec 19, 2013 - 10:55 p.m.

CVE-2013-7112

2013-12-1922:55:04
CWE-20
[email protected]
web.nvd.nist.gov
36
wireshark
sip
vulnerability
denial of service
nvd
cve-2013-7112

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.3

Confidence

High

EPSS

0.01

Percentile

83.9%

JSON

The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 does not check for empty lines, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

Affected configurations

NVD
Node
wiresharkwiresharkMatch1.8.0
OR
wiresharkwiresharkMatch1.8.1
OR
wiresharkwiresharkMatch1.8.2
OR
wiresharkwiresharkMatch1.8.3
OR
wiresharkwiresharkMatch1.8.4
OR
wiresharkwiresharkMatch1.8.5
OR
wiresharkwiresharkMatch1.8.6
OR
wiresharkwiresharkMatch1.8.7
OR
wiresharkwiresharkMatch1.8.8
OR
wiresharkwiresharkMatch1.8.9
OR
wiresharkwiresharkMatch1.8.10
OR
wiresharkwiresharkMatch1.8.11
OR
wiresharkwiresharkMatch1.10.0
OR
wiresharkwiresharkMatch1.10.1
OR
wiresharkwiresharkMatch1.10.2
OR
wiresharkwiresharkMatch1.10.3
VendorProductVersionCPE
wiresharkwireshark1.8.10cpe:/a:wireshark:wireshark:1.8.10:::
wiresharkwireshark1.8.8cpe:/a:wireshark:wireshark:1.8.8:::
wiresharkwireshark1.10.3cpe:/a:wireshark:wireshark:1.10.3:::
wiresharkwireshark1.8.5cpe:/a:wireshark:wireshark:1.8.5:::
wiresharkwireshark1.10.2cpe:/a:wireshark:wireshark:1.10.2:::
wiresharkwireshark1.8.1cpe:/a:wireshark:wireshark:1.8.1:::
wiresharkwireshark1.8.4cpe:/a:wireshark:wireshark:1.8.4:::
wiresharkwireshark1.8.6cpe:/a:wireshark:wireshark:1.8.6:::
wiresharkwireshark1.8.0cpe:/a:wireshark:wireshark:1.8.0:::
wiresharkwireshark1.8.11cpe:/a:wireshark:wireshark:1.8.11:::
Rows per page:
1-10 of 161

Related

prion 1
nvd 1
ubuntucve 1
cvelist 1
debiancve 1
openvas 16
nessus 17
mageia 1
veracode 9
redhat 2
centos 2
amazon 1
oraclelinux 2
osv 1
debian 1
prion
prion
Design/Logic Flaw
2013-12-19 22:55:00
nvd
nvd
CVE-2013-7112
2013-12-19 22:55:04
ubuntucve
ubuntucve
CVE-2013-7112
2013-12-19 00:00:00
cvelist
cvelist
CVE-2013-7112
2013-12-19 22:00:00
debiancve
debiancve
CVE-2013-7112
2013-12-19 22:55:04
openvas
openvas
Wireshark 'SIP' and 'NTLMSSP' Denial of Service Vulnerability-01 (Dec 2013) - Mac OS X
2013-12-30 00:00:00
Wireshark 'SIP' and 'NTLMSSP' Denial of Service Vulnerability-01 (Dec 2013) - Windows
2013-12-30 00:00:00
Mageia: Security Advisory (MGASA-2013-0380)
2022-01-28 00:00:00
nessus
nessus
Oracle Solaris Third-Party Patch Update : wireshark (multiple_vulnerabilities_in_wireshark9)
2015-01-19 00:00:00
Wireshark 1.8.x < 1.8.12 Multiple DoS
2013-12-18 00:00:00
Mandriva Linux Security Advisory : wireshark (MDVSA-2013:296)
2013-12-23 00:00:00
mageia
mageia
Updated wireshark packages fix two security vulnerabilities
2013-12-20 01:10:42
veracode
veracode
Denial Of Service (DoS)
2019-05-16 01:23:07
Denial Of Service (DoS)
2019-05-02 05:02:03
Denial Of Service (DoS)
2019-05-02 05:02:02
redhat
redhat
(RHSA-2014:0342) Moderate: wireshark security update
2014-03-31 00:00:00
(RHSA-2014:0341) Moderate: wireshark security update
2014-03-31 00:00:00
centos
centos
wireshark security update
2014-03-31 18:13:23
wireshark security update
2014-03-31 17:51:37
amazon
amazon
Medium: wireshark
2014-04-25 15:57:00
oraclelinux
oraclelinux
wireshark security update
2014-03-31 00:00:00
wireshark security update
2014-03-31 00:00:00
osv
osv
wireshark - security update
2016-05-31 00:00:00
debian
debian
[SECURITY] [DLA 497-1] wireshark security update
2016-05-31 10:22:31

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

5.3

Confidence

High

EPSS

0.01

Percentile

83.9%

JSON
Related for CVE-2013-7112
prion1nvd1ubuntucve1cvelist1debiancve1openvas16nessus17mageia1veracode9redhat2centos2amazon1oraclelinux2osv1debian1