ID |
CVE-2010-3445
|
Summary |
Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a long string in an unknown ASN.1/BER encoded packet, as demonstrated using SNMP. |
References |
|
Vulnerable Configurations |
-
cpe:2.3:a:wireshark:wireshark:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.0:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.1:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.2:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.3:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.4:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.5:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.6:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.7:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.8:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.9:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.9:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.10:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.10:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.2.11:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.2.11:*:*:*:*:*:*:*
-
cpe:2.3:a:wireshark:wireshark:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.4.0:*:*:*:*:*:*:*
|
CVSS |
Base: | 5.0 (as of 19-09-2017 - 01:31) |
Impact: | |
Exploitability: | |
|
CWE |
CWE-399 |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
NONE |
NONE |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
oval
via4
|
accepted | 2013-08-19T04:00:23.505-04:00 | class | vulnerability | contributors | name | Shane Shaffer | organization | G2, Inc. |
name | Shane Shaffer | organization | G2, Inc. |
name | Shane Shaffer | organization | G2, Inc. |
| definition_extensions | comment | Wireshark is installed on the system. | oval | oval:org.mitre.oval:def:6589 |
| description | Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a long string in an unknown ASN.1/BER encoded packet, as demonstrated using SNMP. | family | windows | id | oval:org.mitre.oval:def:14607 | status | accepted | submitted | 2012-02-27T15:34:33.178-04:00 | title | Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 | version | 8 |
|
redhat
via4
|
advisories | | rpms | - wireshark-0:1.2.13-1.el6_0.1
- wireshark-debuginfo-0:1.2.13-1.el6_0.1
- wireshark-devel-0:1.2.13-1.el6_0.1
- wireshark-gnome-0:1.2.13-1.el6_0.1
- wireshark-0:1.0.15-1.el5_6.4
- wireshark-0:1.0.15-2.el4
- wireshark-debuginfo-0:1.0.15-1.el5_6.4
- wireshark-debuginfo-0:1.0.15-2.el4
- wireshark-gnome-0:1.0.15-1.el5_6.4
- wireshark-gnome-0:1.0.15-2.el4
|
|
refmap
via4
|
bid | 43197 | bugtraq | 20100913 Wireshark 1.4.0 Malformed SNMP V1 Packet Denial of Service | cert-vn | VU#215900 | confirm | | debian | DSA-2127 | fedora | - FEDORA-2011-2620
- FEDORA-2011-2632
- FEDORA-2011-2648
| mandriva | MDVSA-2010:200 | misc | http://xorl.wordpress.com/2010/10/15/cve-2010-3445-wireshark-asn-1-ber-stack-overflow/ | mlist | - [oss-security] 20101001 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark
- [oss-security] 20101011 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark
| secunia | - 42392
- 42411
- 42877
- 43068
- 43759
- 43821
| suse | - SUSE-SR:2011:001
- SUSE-SR:2011:002
| vupen | - ADV-2010-3067
- ADV-2010-3093
- ADV-2011-0076
- ADV-2011-0212
- ADV-2011-0404
- ADV-2011-0626
- ADV-2011-0719
|
|
Last major update |
19-09-2017 - 01:31 |
Published |
26-11-2010 - 19:00 |
Last modified |
19-09-2017 - 01:31 |