Computer Security
[EN] securityvulns.ru no-pyccku


Wireshark sniffer DoS
Published:24.07.2008
Source:
SecurityVulns ID:9170
Type:remote
Threat Level:
5/10
Description:Application crash on network traffic parsing.
Affected:WIRESHARK : Wireshark 1.0
 WIRESHARK : Tshark 1.0
CVE:CVE-2008-3145 (The fragment_add_work function in epan/reassemble.c in Wireshark 0.8.19 through 1.0.1 allows remote attackers to cause a denial of service (crash) via a series of fragmented packets with non-sequential fragmentation offset values, which lead to a buffer over-read.)
Original documentdocumentMANDRIVA, [ MDVSA-2008:152 ] - Updated wireshark packages fix denial of service vulnerability (24.07.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod