Back to search
CVE-2008-4685
Published: Oct 22, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Use-after-free vulnerability in the dissect_q931_cause_ie function in packet-q931.c in the Q.931 dissector in Wireshark 0.10.3 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via certain packets that trigger an exception.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20081211 rPSA-2008-0336-1 tshark wireshark
mailing-list
x_refsource_BUGTRAQ
http://support.avaya.com/elmodocs2/security/ASA-2009-082.htm
x_refsource_CONFIRM
32355
third-party-advisory
x_refsource_SECUNIA
http://wiki.rpath.com/Advisories:rPSA-2008-0336
x_refsource_CONFIRM
http://www.wireshark.org/security/wnpa-sec-2008-06.html
x_refsource_CONFIRM
34144
third-party-advisory
x_refsource_SECUNIA
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2870
x_refsource_CONFIRM
31838
vdb-entry
x_refsource_BID
32944
third-party-advisory
x_refsource_SECUNIA
RHSA-2009:0313
vendor-advisory
x_refsource_REDHAT
ADV-2008-2872
vdb-entry
x_refsource_VUPEN
MDVSA-2008:215
vendor-advisory
x_refsource_MANDRIVA
1021069
vdb-entry
x_refsource_SECTRACK
DSA-1673
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:10788
vdb-entry
signature
x_refsource_OVAL
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now