ID CVE-2013-1582
Summary The dissect_clnp function in epan/dissectors/packet-clnp.c in the CLNP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly manage an offset variable, which allows remote attackers to cause a denial of service (infinite loop or application crash) via a malformed packet.
References
Vulnerable Configurations
  • Wireshark 1.6.0
    cpe:2.3:a:wireshark:wireshark:1.6.0
  • Wireshark 1.6.1
    cpe:2.3:a:wireshark:wireshark:1.6.1
  • Wireshark 1.6.2
    cpe:2.3:a:wireshark:wireshark:1.6.2
  • Wireshark 1.6.3
    cpe:2.3:a:wireshark:wireshark:1.6.3
  • Wireshark 1.6.4
    cpe:2.3:a:wireshark:wireshark:1.6.4
  • Wireshark 1.6.5
    cpe:2.3:a:wireshark:wireshark:1.6.5
  • Wireshark 1.6.6
    cpe:2.3:a:wireshark:wireshark:1.6.6
  • Wireshark 1.6.7
    cpe:2.3:a:wireshark:wireshark:1.6.7
  • Wireshark 1.6.8
    cpe:2.3:a:wireshark:wireshark:1.6.8
  • Wireshark 1.6.9
    cpe:2.3:a:wireshark:wireshark:1.6.9
  • Wireshark 1.6.10
    cpe:2.3:a:wireshark:wireshark:1.6.10
  • Wireshark 1.6.11
    cpe:2.3:a:wireshark:wireshark:1.6.11
  • Wireshark 1.6.12
    cpe:2.3:a:wireshark:wireshark:1.6.12
  • Wireshark 1.8.0
    cpe:2.3:a:wireshark:wireshark:1.8.0
  • Wireshark 1.8.1
    cpe:2.3:a:wireshark:wireshark:1.8.1
  • Wireshark 1.8.2
    cpe:2.3:a:wireshark:wireshark:1.8.2
  • Wireshark 1.8.3
    cpe:2.3:a:wireshark:wireshark:1.8.3
  • Wireshark 1.8.4
    cpe:2.3:a:wireshark:wireshark:1.8.4
CVSS
Base: 2.9 (as of 04-02-2013 - 10:52)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
ADJACENT_NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-2625.NASL
    description Multiple vulnerabilities were discovered in the dissectors for the CLNP, DTLS, DCP-ETSI and NTLMSSP protocols, which could result in denial of service or the execution of arbitrary code.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 64649
    published 2013-02-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64649
    title Debian DSA-2625-1 : wireshark - several vulnerabilities
  • NASL family SuSE Local Security Checks
    NASL id OPENSUSE-2013-104.NASL
    description wireshark was updated to 1.8.5 to fix bugs and security issues. Vulnerabilities fixed : - Infinite and large loops in the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors wnpa-sec-2013-01 CVE-2013-1572 CVE-2013-1573 CVE-2013-1574 CVE-2013-1575 CVE-2013-1576 CVE-2013-1577 CVE-2013-1578 CVE-2013-1579 CVE-2013-1580 CVE-2013-1581 - The CLNP dissector could crash wnpa-sec-2013-02 CVE-2013-1582 - The DTN dissector could crash wnpa-sec-2013-03 CVE-2013-1583 CVE-2013-1584 - The MS-MMC dissector (and possibly others) could crash wnpa-sec-2013-04 CVE-2013-1585 - The DTLS dissector could crash wnpa-sec-2013-05 CVE-2013-1586 - The ROHC dissector could crash wnpa-sec-2013-06 CVE-2013-1587 - The DCP-ETSI dissector could corrupt memory wnpa-sec-2013-07 CVE-2013-1588 - The Wireshark dissection engine could crash wnpa-sec-2013-08 CVE-2013-1589 - The NTLMSSP dissector could overflow a buffer wnpa-sec-2013-09 CVE-2013-1590 + Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.5.h tml
    last seen 2019-02-21
    modified 2018-11-19
    plugin id 74879
    published 2014-06-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=74879
    title openSUSE Security Update : wireshark (openSUSE-SU-2013:0276-1)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_WIRESHARK-8467.NASL
    description Wireshark has been updated to 1.6.13 which fixes bugs and security issues : The following vulnerabilities have been fixed : - Infinite and large loops in the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors wnpa-sec-2013-01 CVE-2013-1572 / CVE-2013-1573 / CVE-2013-1574 / CVE-2013-1575 / CVE-2013-1576 / CVE-2013-1577 / CVE-2013-1578 / CVE-2013-1579 / CVE-2013-1580 / CVE-2013-1581 - The CLNP dissector could crash wnpa-sec-2013-02 CVE-2013-1582 - The DTN dissector could crash wnpa-sec-2013-03 CVE-2013-1583 / CVE-2013-1584 - The MS-MMC dissector (and possibly others) could crash wnpa-sec-2013-04 CVE-2013-1585 - The DTLS dissector could crash wnpa-sec-2013-05 CVE-2013-1586 - The DCP-ETSI dissector could corrupt memory wnpa-sec-2013-07 CVE-2013-1588: * The Wireshark dissection engine could crash wnpa-sec-2013-08 CVE-2013-1589: * The NTLMSSP dissector could overflow a buffer wnpa-sec-2013-09 CVE-2013-1590: Further bug fixes and updated protocol support as listed in : http://www.wireshark.org/docs/relnotes/wireshark-1.6.13.html
    last seen 2019-02-21
    modified 2013-03-23
    plugin id 64797
    published 2013-02-22
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64797
    title SuSE 10 Security Update : wireshark (ZYPP Patch Number 8467)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_WIRESHARK-130206.NASL
    description wireshark was updated to 1.8.5 (bnc#801131), fixing bugs and security issues : The following vulnerabilities have been fixed : - Infinite and large loops in the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors wnpa-sec-2013-01 CVE-2013-1572 / CVE-2013-1573 / CVE-2013-1574 / CVE-2013-1575 / CVE-2013-1576 / CVE-2013-1577 / CVE-2013-1578 / CVE-2013-1579 / CVE-2013-1580 / CVE-2013-1581 - The CLNP dissector could crash wnpa-sec-2013-02. (CVE-2013-1582) - The DTN dissector could crash wnpa-sec-2013-03. (CVE-2013-1583 / CVE-2013-1584) - The MS-MMC dissector (and possibly others) could crash wnpa-sec-2013-04. (CVE-2013-1585) - The DTLS dissector could crash wnpa-sec-2013-05. (CVE-2013-1586) - The ROHC dissector could crash wnpa-sec-2013-06. (CVE-2013-1587) - The DCP-ETSI dissector could corrupt memory wnpa-sec-2013-07. (CVE-2013-1588) - The Wireshark dissection engine could crash wnpa-sec-2013-08. (CVE-2013-1589) - The NTLMSSP dissector could overflow a buffer wnpa-sec-2013-09 CVE-2013-1590: Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.5.h tml
    last seen 2019-02-21
    modified 2013-10-25
    plugin id 64795
    published 2013-02-22
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64795
    title SuSE 11.2 Security Update : wireshark (SAT Patch Number 7317)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_WIRESHARK-130207.NASL
    description wireshark was updated to 1.8.5 (bnc#801131), fixing bugs and security issues : The following vulnerabilities have been fixed : - Infinite and large loops in the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors wnpa-sec-2013-01 CVE-2013-1572 / CVE-2013-1573 / CVE-2013-1574 / CVE-2013-1575 / CVE-2013-1576 / CVE-2013-1577 / CVE-2013-1578 / CVE-2013-1579 / CVE-2013-1580 / CVE-2013-1581 - The CLNP dissector could crash wnpa-sec-2013-02. (CVE-2013-1582) - The DTN dissector could crash wnpa-sec-2013-03. (CVE-2013-1583 / CVE-2013-1584) - The MS-MMC dissector (and possibly others) could crash wnpa-sec-2013-04. (CVE-2013-1585) - The DTLS dissector could crash wnpa-sec-2013-05. (CVE-2013-1586) - The ROHC dissector could crash wnpa-sec-2013-06. (CVE-2013-1587) - The DCP-ETSI dissector could corrupt memory wnpa-sec-2013-07. (CVE-2013-1588) - The Wireshark dissection engine could crash wnpa-sec-2013-08. (CVE-2013-1589) - The NTLMSSP dissector could overflow a buffer wnpa-sec-2013-09 CVE-2013-1590: Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.5.h tml
    last seen 2019-02-21
    modified 2013-10-25
    plugin id 64796
    published 2013-02-22
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64796
    title SuSE 11.2 Security Update : wireshark (SAT Patch Number 7317)
  • NASL family Windows
    NASL id WIRESHARK_1_6_13.NASL
    description The installed version of Wireshark 1.6 is earlier than 1.6.13. It is, therefore, affected by the following vulnerabilities : - Errors exist related to the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors that could allow the application to enter infinite or large loops, thereby consuming excessive CPU resources. (Bugs 8036, 8037, 8038, 8040, 8041, 8042, 8043, 8198, 8199, 8222) - Errors exist related to the DCP-ETSI, DTLS, MS-MMC, DTN, CLNP dissectors that could allow them to crash. (Bugs 7871, 7945, 8111, 8112, 8213) - An unspecified error could allow the dissection engine to crash. (Bug 8197) - An unspecified buffer overflow exists in the NTLMSSP dissector that has an unspecified impact.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 64361
    published 2013-01-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64361
    title Wireshark 1.6.x < 1.6.13 Multiple Vulnerabilities
  • NASL family Windows
    NASL id WIRESHARK_1_8_5.NASL
    description The installed version of Wireshark 1.8 is earlier than 1.8.5. It is, therefore, affected by the following vulnerabilities : - Errors exist related to the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors that could allow the application to enter infinite or large loops, thereby consuming excessive CPU resources. (Bugs 8036, 8037, 8038, 8040, 8041, 8042, 8043, 8198, 8199, 8222) - Errors exist related to the DCP-ETSI, ROHC, DTLS, MS-MMC, DTN, CLNP dissectors that could allow them to crash. (Bugs 7679, 7871, 7945, 8111, 8112, 8213) - An unspecified error could allow the dissection engine to crash. (Bug 8197) - An unspecified buffer overflow exists in the NTLMSSP dissector that has an unspecified impact.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 64362
    published 2013-01-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64362
    title Wireshark 1.8.x < 1.8.5 Multiple Vulnerabilities
oval via4
accepted 2013-04-29T04:17:04.516-04:00
class vulnerability
contributors
  • name Shane Shaffer
    organization G2, Inc.
  • name Jonathan Baker
    organization The MITRE Corporation
definition_extensions
comment Wireshark is installed on the system.
oval oval:org.mitre.oval:def:6589
description The dissect_clnp function in epan/dissectors/packet-clnp.c in the CLNP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly manage an offset variable, which allows remote attackers to cause a denial of service (infinite loop or application crash) via a malformed packet.
family windows
id oval:org.mitre.oval:def:16426
status accepted
submitted 2013-02-04T09:42:37.072-05:00
title The dissect_clnp function in epan/dissectors/packet-clnp.c in the CLNP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly manage an offset variable, which allows remote attackers to cause a denial of service (infinite loop or application crash) via a malformed packet
version 7
refmap via4
confirm
debian DSA-2625
suse
  • openSUSE-SU-2013:0276
  • openSUSE-SU-2013:0285
Last major update 02-11-2013 - 23:31
Published 02-02-2013 - 20:55
Last modified 18-09-2017 - 21:36
Back to Top