Back to search
CVE-2008-4683
Published: Oct 22, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The dissect_btacl function in packet-bthci_acl.c in the Bluetooth ACL dissector in Wireshark 0.99.2 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a packet with an invalid length, related to an erroneous tvb_memcpy call.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20081211 rPSA-2008-0336-1 tshark wireshark
mailing-list
x_refsource_BUGTRAQ
http://support.avaya.com/elmodocs2/security/ASA-2009-082.htm
x_refsource_CONFIRM
32355
third-party-advisory
x_refsource_SECUNIA
http://wiki.rpath.com/Advisories:rPSA-2008-0336
x_refsource_CONFIRM
oval:org.mitre.oval:def:14982
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:9821
vdb-entry
signature
x_refsource_OVAL
http://www.wireshark.org/security/wnpa-sec-2008-06.html
x_refsource_CONFIRM
34144
third-party-advisory
x_refsource_SECUNIA
31838
vdb-entry
x_refsource_BID
32944
third-party-advisory
x_refsource_SECUNIA
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1513
x_refsource_CONFIRM
RHSA-2009:0313
vendor-advisory
x_refsource_REDHAT
ADV-2008-2872
vdb-entry
x_refsource_VUPEN
MDVSA-2008:215
vendor-advisory
x_refsource_MANDRIVA
1021069
vdb-entry
x_refsource_SECTRACK
DSA-1673
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now