Lucene search

[email protected]NVD:CVE-2012-4296

HistoryAug 16, 2012 - 10:38 a.m.

CVE-2012-4296

2012-08-1610:38:09

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.003

Percentile

68.5%

JSON

Buffer overflow in epan/dissectors/packet-rtps2.c in the RTPS2 dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet.

Affected configurations

Nvd

Node

wiresharkwiresharkMatch1.6.0

wiresharkwiresharkMatch1.6.1

wiresharkwiresharkMatch1.6.2

wiresharkwiresharkMatch1.6.3

wiresharkwiresharkMatch1.6.4

wiresharkwiresharkMatch1.6.5

wiresharkwiresharkMatch1.6.6

wiresharkwiresharkMatch1.6.7

wiresharkwiresharkMatch1.6.8

wiresharkwiresharkMatch1.6.9

Node

opensuseopensuseMatch11.4

opensuseopensuseMatch12.1

sunsunosMatch5.11

Node

wiresharkwiresharkMatch1.4.0

wiresharkwiresharkMatch1.4.1

wiresharkwiresharkMatch1.4.2

wiresharkwiresharkMatch1.4.3

wiresharkwiresharkMatch1.4.4

wiresharkwiresharkMatch1.4.5

wiresharkwiresharkMatch1.4.6

wiresharkwiresharkMatch1.4.7

wiresharkwiresharkMatch1.4.8

wiresharkwiresharkMatch1.4.9

wiresharkwiresharkMatch1.4.10

wiresharkwiresharkMatch1.4.11

wiresharkwiresharkMatch1.4.12

wiresharkwiresharkMatch1.4.13

wiresharkwiresharkMatch1.4.14

Node

wiresharkwiresharkMatch1.8.0

wiresharkwiresharkMatch1.8.1

References

anonsvn.wireshark.org/viewvc/trunk/epan/dissectors/packet-rtps2.c?r1=44320&r2=44319&pathrev=44320

anonsvn.wireshark.org/viewvc?view=revision&revision=44320

lists.opensuse.org/opensuse-updates/2012-08/msg00033.html

secunia.com/advisories/50276

secunia.com/advisories/51363

secunia.com/advisories/54425

www.debian.org/security/2012/dsa-2590

www.gentoo.org/security/en/glsa/glsa-201308-05.xml

www.securityfocus.com/bid/55035

www.wireshark.org/security/wnpa-sec-2012-18.html

blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_wireshark3

bugs.wireshark.org/bugzilla/show_bug.cgi?id=7568

hermes.opensuse.org/messages/15514562

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15583

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.003

Percentile

68.5%

JSON

Related for NVD:CVE-2012-4296

cvelist1 ubuntucve1 cve1 prion1 debiancve1 nessus16 openvas16 debian1 fedora2 securityvulns2 freebsd1 gentoo1