Lucene search
F5F5:K000138056HistoryDec 27, 2023 - 12:00 a.m.
K000138056 : Wireshark vulnerability CVE-2018-14438
2023-12-2700:00:00
my.f5.com
5
wireshark
vulnerability
create_app_running_mutex
function
wsutil
file_util
setsecuritydescriptordacl
null dacl
access control arbitarily
cve-2018-14438
Security Advisory Description
In Wireshark through 2.6.2, the create_app_running_mutex function in wsutil/file_util.c calls SetSecurityDescriptorDacl to set a NULL DACL, which allows attackers to modify the access control arbitrarily. (CVE-2018-14438)
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
openvas
openvas
Wireshark 'non-NULL DACL' Access Control Vulnerability - Windows
2018-07-30 00:00:00
Wireshark 'non-NULL DACL' Access Control Vulnerability - Mac OS X
2018-07-30 00:00:00
redhatcve
redhatcve
CVE-2018-14438
2018-07-30 21:57:05
ubuntucve
ubuntucve
CVE-2018-14438
2018-07-20 00:00:00
prion
prion
Design/Logic Flaw
2018-07-20 00:29:00
osv
osv
CVE-2018-14438
2018-07-20 00:29:00
cvelist
cvelist
CVE-2018-14438
2018-07-20 00:00:00
cve
cve
CVE-2018-14438
2018-07-20 00:29:00
nvd
nvd
CVE-2018-14438
2018-07-20 00:29:00
debiancve
debiancve
CVE-2018-14438
2018-07-20 00:29:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1997
2021-07-02 18:20:14