Back to search
CVE-2013-7114
Published: Dec 19, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple buffer overflows in the create_ntlmssp_v2_key function in epan/dissectors/packet-ntlmssp.c in the NTLMSSP v2 dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 allow remote attackers to cause a denial of service (application crash) via a long domain name in a packet.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
56052
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2014:0013
vendor-advisory
x_refsource_SUSE
56285
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2014:0020
vendor-advisory
x_refsource_SUSE
DSA-2825
vendor-advisory
x_refsource_DEBIAN
56313
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2014:0017
vendor-advisory
x_refsource_SUSE
MDVSA-2013:296
vendor-advisory
x_refsource_MANDRIVA
RHSA-2014:0342
vendor-advisory
x_refsource_REDHAT
http://anonsvn.wireshark.org/viewvc?view=revision&revision=53626
x_refsource_CONFIRM
http://www.wireshark.org/security/wnpa-sec-2013-68.html
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now