CVE-2009-4377

Published: Dec 21, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The (1) SMB and (2) SMB2 dissectors in Wireshark 0.9.0 through 1.2.4 allow remote attackers to cause a denial of service (crash) via a crafted packet that triggers a NULL pointer dereference, as demonstrated by fuzz-2009-12-07-11141.pcap.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

61178

vdb-entry

x_refsource_OSVDB

DSA-1983

vendor-advisory

x_refsource_DEBIAN

oval:org.mitre.oval:def:9564

vdb-entry

signature

x_refsource_OVAL

37916

third-party-advisory

x_refsource_SECUNIA

37842

third-party-advisory

x_refsource_SECUNIA

ADV-2009-3596

vdb-entry

x_refsource_VUPEN

FEDORA-2009-13592

vendor-advisory

x_refsource_FEDORA

37407

vdb-entry

x_refsource_BID

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4301

x_refsource_CONFIRM

1023374

vdb-entry

x_refsource_SECTRACK

MDVSA-2010:031

vendor-advisory

x_refsource_MANDRIVA

http://www.wireshark.org/security/wnpa-sec-2009-09.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2009-4377

Description

Affected Products

References