Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDB2EAA7C2-E64A-11DF-BC65-0022156E8794
HistorySep 16, 2010 - 12:00 a.m.

Wireshark -- DoS in the BER-based dissectors

2010-09-1600:00:00
vuxml.freebsd.org
26

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.006

Percentile

79.0%

JSON

Secunia reports:

A vulnerability has been discovered in Wireshark, which can
be exploited by malicious people to cause a DoS (Denial of
Service).
The vulnerability is caused due to an infinite recursion
error in the “dissect_unknown_ber()” function in
epan/dissectors/packet-ber.c and can be exploited to cause a
stack overflow e.g. via a specially crafted SNMP packet.
The vulnerability is confirmed in version 1.4.0 and
reported in version 1.2.11 and prior and version 1.4.0 and
prior.

Related

veracode 1
nessus 20
debian 2
ubuntucve 1
openvas 25
debiancve 1
securityvulns 2
cvelist 1
nvd 1
prion 1
altlinux 1
osv 1
cve 1
redhat 2
oraclelinux 2
centos 1
fedora 3
gentoo 1
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:51:02
nessus
nessus
Debian DSA-2127-1 : wireshark - denial of service
2010-11-29 00:00:00
Wireshark < 1.2.12 / 1.4.1 ASN.1 BER Dissector Denial of Service
2010-10-14 00:00:00
Mandriva Linux Security Advisory : wireshark (MDVSA-2010:200)
2010-10-14 00:00:00
debian
debian
[SECURITY] [DSA-2127-1] New wireshark packages fix denial of service
2010-11-28 09:28:18
[SECURITY] [DSA-2127-1] New wireshark packages fix denial of service
2010-11-28 09:28:18
ubuntucve
ubuntucve
CVE-2010-3445
2010-11-26 00:00:00
openvas
openvas
Wireshark BER Dissector Stack Consumption Vulnerability - Mac OS X
2012-05-04 00:00:00
Mandriva Update for wireshark MDVSA-2010:200 (wireshark)
2010-10-19 00:00:00
Mandriva Update for wireshark MDVSA-2010:200 (wireshark)
2010-10-19 00:00:00
debiancve
debiancve
CVE-2010-3445
2010-11-26 19:00:07
securityvulns
securityvulns
[ MDVSA-2010:200 ] wireshark
2010-10-13 00:00:00
Wireshark DoS
2010-10-13 00:00:00
cvelist
cvelist
CVE-2010-3445
2010-11-26 18:23:00
nvd
nvd
CVE-2010-3445
2010-11-26 19:00:07
prion
prion
Null pointer dereference
2010-11-26 19:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package wireshark version 1.4.1-alt1
2010-10-14 00:00:00
osv
osv
wireshark - denial of service
2010-11-28 00:00:00
cve
cve
CVE-2010-3445
2010-11-26 19:00:07
redhat
redhat
(RHSA-2010:0924) Moderate: wireshark security update
2010-11-30 00:00:00
(RHSA-2011:0370) Moderate: wireshark security update
2011-03-21 00:00:00
oraclelinux
oraclelinux
wireshark security update
2011-01-10 00:00:00
wireshark security update
2011-03-21 00:00:00
centos
centos
wireshark security update
2011-03-22 21:47:45
fedora
fedora
[SECURITY] Fedora 15 Update: wireshark-1.4.4-1.fc15
2011-03-09 03:10:21
[SECURITY] Fedora 14 Update: wireshark-1.4.4-1.fc14
2011-03-11 20:54:09
[SECURITY] Fedora 13 Update: wireshark-1.2.15-1.fc13
2011-03-11 20:56:24
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2011-10-09 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.006

Percentile

79.0%

JSON
Related for B2EAA7C2-E64A-11DF-BC65-0022156E8794
veracode1nessus20debian2ubuntucve1openvas25debiancve1securityvulns2cvelist1nvd1prion1altlinux1osv1cve1redhat2oraclelinux2centos1fedora3gentoo1