CVE-2008-3140 | Vulnerability Database | Aqua Security

The syslog dissector in Wireshark (formerly Ethereal) 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors, possibly related to an incomplete SS7 MSU syslog encapsulated packet.

Affected Software

Name	Vendor	Start Version	End Version
Wireshark	Wireshark	1.0.0 (including)	1.0.0 (including)
Wireshark	Ubuntu	hardy	*
Wireshark	Ubuntu	upstream	*

References

http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
http://secunia.com/advisories/30886
http://secunia.com/advisories/30942
http://secunia.com/advisories/31085
http://secunia.com/advisories/31378
http://secunia.com/advisories/31687
http://security.gentoo.org/glsa/glsa-200808-04.xml
http://securitytracker.com/id?1020404
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0212
http://www.securityfocus.com/archive/1/493882/100/0/threaded
http://www.securityfocus.com/bid/30020
http://www.vupen.com/english/advisories/2008/1982/references
http://www.wireshark.org/security/wnpa-sec-2008-03.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/43518
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14700
https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00544.html

NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-3140
CWE	https://cwe.mitre.org/data/definitions/.html