QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-3145

Back to search

CVE-2008-3145

Published: Jul 16, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

The fragment_add_work function in epan/reassemble.c in Wireshark 0.8.19 through 1.0.1 allows remote attackers to cause a denial of service (crash) via a series of fragmented packets with non-sequential fragmentation offset values, which lead to a buffer over-read.

VendorProductVersions

n/a

n/a

affected
n/a

References

SUSE-SR:2008:017
vendor-advisory
x_refsource_SUSE
30181
vdb-entry
x_refsource_BID
20080729 rPSA-2008-0237-1 tshark wireshark
mailing-list
x_refsource_BUGTRAQ
FEDORA-2008-6440
vendor-advisory
x_refsource_FEDORA
RHSA-2008:0890
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:9020
vdb-entry
signature
x_refsource_OVAL
31687
third-party-advisory
x_refsource_SECUNIA
ADV-2008-2057
vdb-entry
x_refsource_VUPEN
GLSA-200808-04
vendor-advisory
x_refsource_GENTOO
wireshark-packets-dos(43719)
vdb-entry
x_refsource_XF
MDVSA-2008:152
vendor-advisory
x_refsource_MANDRIVA
32091
third-party-advisory
x_refsource_SECUNIA
31044
third-party-advisory
x_refsource_SECUNIA
ADV-2008-2773
vdb-entry
x_refsource_VUPEN
32944
third-party-advisory
x_refsource_SECUNIA
31257
third-party-advisory
x_refsource_SECUNIA
31378
third-party-advisory
x_refsource_SECUNIA
DSA-1673
vendor-advisory
x_refsource_DEBIAN
31085
third-party-advisory
x_refsource_SECUNIA
1020471
vdb-entry
x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now