CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
79.0%
Secunia reports:
A vulnerability has been discovered in Wireshark, which can
be exploited by malicious people to cause a DoS (Denial of
Service).
The vulnerability is caused due to an infinite recursion
error in the “dissect_unknown_ber()” function in
epan/dissectors/packet-ber.c and can be exploited to cause a
stack overflow e.g. via a specially crafted SNMP packet.
The vulnerability is confirmed in version 1.4.0 and
reported in version 1.2.11 and prior and version 1.4.0 and
prior.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | wireshark | = 1.3 | UNKNOWN |
FreeBSD | any | noarch | wireshark | < 1.4.1 | UNKNOWN |
FreeBSD | any | noarch | wireshark-lite | = 1.3 | UNKNOWN |
FreeBSD | any | noarch | wireshark-lite | < 1.4.1 | UNKNOWN |
FreeBSD | any | noarch | tshark | = 1.3 | UNKNOWN |
FreeBSD | any | noarch | tshark | < 1.4.1 | UNKNOWN |
FreeBSD | any | noarch | tshark-lite | = 1.3 | UNKNOWN |
FreeBSD | any | noarch | tshark-lite | < 1.4.1 | UNKNOWN |