ID CVE-2016-2523
Summary The dnp3_al_process_object function in epan/dissectors/packet-dnp.c in the DNP3 dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
References
Vulnerable Configurations
  • cpe:2.3:a:wireshark:wireshark:1.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.1:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.1:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.2:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.2:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.3:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.3:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.4:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.4:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.5:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.5:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.6:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.6:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.7:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.7:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.8:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.8:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:1.12.9:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:1.12.9:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:2.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:2.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:wireshark:wireshark:2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:wireshark:wireshark:2.0.1:*:*:*:*:*:*:*
CVSS
Base: 7.1 (as of 08-09-2017 - 01:29)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:C
refmap via4
confirm
debian DSA-3516
gentoo GLSA-201604-05
sectrack 1035118
suse
  • openSUSE-SU-2016:0660
  • openSUSE-SU-2016:0661
Last major update 08-09-2017 - 01:29
Published 28-02-2016 - 04:59
Back to Top