Back to search
CVE-2008-4684
Published: Oct 22, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly handle exceptions thrown by post dissectors, which allows remote attackers to cause a denial of service (application crash) via a certain series of packets, as demonstrated by enabling the (1) PRP or (2) MATE post dissector.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20081211 rPSA-2008-0336-1 tshark wireshark
mailing-list
x_refsource_BUGTRAQ
http://support.avaya.com/elmodocs2/security/ASA-2009-082.htm
x_refsource_CONFIRM
32355
third-party-advisory
x_refsource_SECUNIA
http://wiki.rpath.com/Advisories:rPSA-2008-0336
x_refsource_CONFIRM
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2549
x_refsource_CONFIRM
http://www.wireshark.org/security/wnpa-sec-2008-06.html
x_refsource_CONFIRM
34144
third-party-advisory
x_refsource_SECUNIA
31838
vdb-entry
x_refsource_BID
32944
third-party-advisory
x_refsource_SECUNIA
RHSA-2009:0313
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:14767
vdb-entry
signature
x_refsource_OVAL
ADV-2008-2872
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:10223
vdb-entry
signature
x_refsource_OVAL
MDVSA-2008:215
vendor-advisory
x_refsource_MANDRIVA
1021069
vdb-entry
x_refsource_SECTRACK
DSA-1673
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now