Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-7112
HistoryDec 19, 2013 - 10:55 p.m.

CVE-2013-7112

2013-12-1922:55:04
CWE-20
[email protected]
web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

5.5 Medium

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.9%

JSON

The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 does not check for empty lines, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

Affected configurations

NVD
Node
wiresharkwiresharkMatch1.8.0
OR
wiresharkwiresharkMatch1.8.1
OR
wiresharkwiresharkMatch1.8.2
OR
wiresharkwiresharkMatch1.8.3
OR
wiresharkwiresharkMatch1.8.4
OR
wiresharkwiresharkMatch1.8.5
OR
wiresharkwiresharkMatch1.8.6
OR
wiresharkwiresharkMatch1.8.7
OR
wiresharkwiresharkMatch1.8.8
OR
wiresharkwiresharkMatch1.8.9
OR
wiresharkwiresharkMatch1.8.10
OR
wiresharkwiresharkMatch1.8.11
OR
wiresharkwiresharkMatch1.10.0
OR
wiresharkwiresharkMatch1.10.1
OR
wiresharkwiresharkMatch1.10.2
OR
wiresharkwiresharkMatch1.10.3

Related

prion 1
cvelist 1
ubuntucve 1
cve 1
debiancve 1
openvas 16
nessus 17
mageia 1
oraclelinux 2
veracode 9
redhat 2
centos 2
amazon 1
debian 1
osv 1
prion
prion
Design/Logic Flaw
2013-12-19 22:55:00
cvelist
cvelist
CVE-2013-7112
2013-12-19 22:00:00
ubuntucve
ubuntucve
CVE-2013-7112
2013-12-19 00:00:00
cve
cve
CVE-2013-7112
2013-12-19 22:55:04
debiancve
debiancve
CVE-2013-7112
2013-12-19 22:55:04
openvas
openvas
Wireshark 'SIP' and 'NTLMSSP' Denial of Service Vulnerability-01 (Dec 2013) - Mac OS X
2013-12-30 00:00:00
Wireshark 'SIP' and 'NTLMSSP' Denial of Service Vulnerability-01 (Dec 2013) - Windows
2013-12-30 00:00:00
Mageia: Security Advisory (MGASA-2013-0380)
2022-01-28 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : wireshark (MDVSA-2013:296)
2013-12-23 00:00:00
Oracle Solaris Third-Party Patch Update : wireshark (multiple_vulnerabilities_in_wireshark9)
2015-01-19 00:00:00
Wireshark 1.8.x < 1.8.12 Multiple DoS
2013-12-18 00:00:00
mageia
mageia
Updated wireshark packages fix two security vulnerabilities
2013-12-20 01:10:42
oraclelinux
oraclelinux
wireshark security update
2014-03-31 00:00:00
wireshark security update
2014-03-31 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:02:02
Denial Of Service (DoS)
2019-05-02 05:02:03
Denial Of Service (DoS)
2019-05-02 05:02:02
redhat
redhat
(RHSA-2014:0342) Moderate: wireshark security update
2014-03-31 00:00:00
(RHSA-2014:0341) Moderate: wireshark security update
2014-03-31 00:00:00
centos
centos
wireshark security update
2014-03-31 18:13:23
wireshark security update
2014-03-31 17:51:37
amazon
amazon
Medium: wireshark
2014-04-25 15:57:00
debian
debian
[SECURITY] [DLA 497-1] wireshark security update
2016-05-31 10:22:31
osv
osv
wireshark - security update
2016-05-31 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

5.5 Medium

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.9%

JSON
Related for NVD:CVE-2013-7112
prion1cvelist1ubuntucve1cve1debiancve1openvas16nessus17mageia1oraclelinux2veracode9redhat2centos2amazon1debian1osv1