CVE-2009-0601

Published: Feb 16, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Format string vulnerability in Wireshark 0.99.8 through 1.0.5 on non-Windows platforms allows local users to cause a denial of service (application crash) via format string specifiers in the HOME environment variable.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20090312 rPSA-2009-0040-1 tshark wireshark

mailing-list

x_refsource_BUGTRAQ

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3150

x_refsource_CONFIRM

33690

vdb-entry

x_refsource_BID

SUSE-SR:2009:005

vendor-advisory

x_refsource_SUSE

1021697

vdb-entry

x_refsource_SECTRACK

https://issues.rpath.com/browse/RPL-2984

x_refsource_CONFIRM

http://wiki.rpath.com/Advisories:rPSA-2009-0040

x_refsource_CONFIRM

ADV-2009-0370

vdb-entry

x_refsource_VUPEN

http://www.wireshark.org/security/wnpa-sec-2009-01.html

x_refsource_CONFIRM

34264

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-0601

Description

Affected Products

References