ID CVE-2011-4101
Summary The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.
References
Vulnerable Configurations
  • Wireshark 1.4.8
    cpe:2.3:a:wireshark:wireshark:1.4.8
  • Wireshark 1.4.6
    cpe:2.3:a:wireshark:wireshark:1.4.6
  • Wireshark 1.4.5
    cpe:2.3:a:wireshark:wireshark:1.4.5
  • Wireshark 1.4.3
    cpe:2.3:a:wireshark:wireshark:1.4.3
  • Wireshark 1.4.2
    cpe:2.3:a:wireshark:wireshark:1.4.2
  • Wireshark 1.4.1
    cpe:2.3:a:wireshark:wireshark:1.4.1
  • Wireshark 1.4.0
    cpe:2.3:a:wireshark:wireshark:1.4.0
  • Wireshark 1.4.7
    cpe:2.3:a:wireshark:wireshark:1.4.7
  • Wireshark 1.4.4
    cpe:2.3:a:wireshark:wireshark:1.4.4
  • Wireshark 1.4.9
    cpe:2.3:a:wireshark:wireshark:1.4.9
  • Wireshark 1.6.1
    cpe:2.3:a:wireshark:wireshark:1.6.1
  • Wireshark 1.6.2
    cpe:2.3:a:wireshark:wireshark:1.6.2
  • Wireshark 1.6.0
    cpe:2.3:a:wireshark:wireshark:1.6.0
CVSS
Base: 4.3 (as of 04-11-2011 - 09:38)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Windows
    NASL id WIRESHARK_1_4_10.NASL
    description The installed version of Wireshark is 1.4.x before 1.4.10. This version is affected by the following vulnerabilities : - An error exists in the Infiniband dissector that can allow a NULL pointer to be dereferenced when processing certain malformed packets. (CVE-2011-4101) - A buffer overflow exists in the ERF file reader and can be triggered when processing certain malformed packets. (CVE-2011-4102)
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 56689
    published 2011-11-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=56689
    title Wireshark 1.4.x < 1.4.10 Multiple Vulnerabilities
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS11_WIRESHARK_20111205.NASL
    description The remote Solaris system is missing necessary patches to address security updates : - The proto_tree_add_item function in Wireshark 1.6.0 through 1.6.1 and 1.4.0 through 1.4.8, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of service (infinite loop) via vectors involving a malformed IKE packet and many items in a tree. (CVE-2011-3266) - Untrusted search path vulnerability in Wireshark 1.4.x before 1.4.9 and 1.6.x before 1.6.2 allows local users to gain privileges via a Trojan horse Lua script in an unspecified directory. (CVE-2011-3360) - The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet. (CVE-2011-4101)
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 80800
    published 2015-01-19
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=80800
    title Oracle Solaris Third-Party Patch Update : wireshark (denial_of_service_vulnerability_in)
  • NASL family Mandriva Local Security Checks
    NASL id MANDRIVA_MDVSA-2011-164.NASL
    description This advisory updates wireshark to the latest version (1.6.3), fixing several security issues : An uninitialized variable in the CSN.1 dissector could cause a crash (CVE-2011-4100). Huzaifa Sidhpurwala of Red Hat Security Response Team discovered that the Infiniband dissector could dereference a NULL pointer (CVE-2011-4101). Huzaifa Sidhpurwala of Red Hat Security Response Team discovered a buffer overflow in the ERF file reader (CVE-2011-4102). The updated packages have been upgraded to the latest 1.6.x version (1.6.3) which is not vulnerable to these issues.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 61934
    published 2012-09-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=61934
    title Mandriva Linux Security Advisory : wireshark (MDVSA-2011:164)
  • NASL family Windows
    NASL id WIRESHARK_1_6_3.NASL
    description The installed version of Wireshark is 1.6.x before 1.6.3. This version is affected by the following vulnerabilities : - An error exists in CSN.1 dissector that can allow denial of service attacks when processing certain malformed packets. (CVE-2011-4100) - An error exists in the Infiniband dissector that can allow a NULL pointer to be dereferenced when processing certain malformed packets. (CVE-2011-4101) - A buffer overflow exists in the ERF file reader and can be triggered when processing certain malformed packets. (CVE-2011-4102)
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 56690
    published 2011-11-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=56690
    title Wireshark 1.6.x < 1.6.3 Multiple Vulnerabilities
oval via4
accepted 2013-08-19T04:00:34.127-04:00
class vulnerability
contributors
  • name Shane Shaffer
    organization G2, Inc.
  • name Shane Shaffer
    organization G2, Inc.
  • name Shane Shaffer
    organization G2, Inc.
definition_extensions
comment Wireshark is installed on the system.
oval oval:org.mitre.oval:def:6589
description The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.
family windows
id oval:org.mitre.oval:def:14760
status accepted
submitted 2012-02-27T15:34:33.178-04:00
title Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service
version 8
refmap via4
bid 50481
confirm
mlist [oss-security] 20111101 Re: CVE request for wireshark flaws
osvdb 76769
secunia 46644
xf wireshark-infiniband-dissector-dos(71091)
Last major update 13-08-2012 - 23:31
Published 03-11-2011 - 11:55
Last modified 18-09-2017 - 21:34
Back to Top