CVE Vulnerabilities

CVE-2011-1590

Published: Apr 29, 2011 | Modified: Sep 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
RedHat/V2
6.8 MODERATE
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu

The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.

Affected Software

Name Vendor Start Version End Version
Wireshark Wireshark 1.2.0 1.2.0
Wireshark Wireshark 1.2.1 1.2.1
Wireshark Wireshark 1.2.2 1.2.2
Wireshark Wireshark 1.2.3 1.2.3
Wireshark Wireshark 1.2.4 1.2.4
Wireshark Wireshark 1.2.5 1.2.5
Wireshark Wireshark 1.2.6 1.2.6
Wireshark Wireshark 1.2.7 1.2.7
Wireshark Wireshark 1.2.8 1.2.8
Wireshark Wireshark 1.2.9 1.2.9
Wireshark Wireshark 1.2.10 1.2.10
Wireshark Wireshark 1.2.11 1.2.11
Wireshark Wireshark 1.2.12 1.2.12
Wireshark Wireshark 1.2.13 1.2.13
Wireshark Wireshark 1.2.14 1.2.14
Wireshark Wireshark 1.2.15 1.2.15
Wireshark Wireshark 1.4.0 1.4.0
Wireshark Wireshark 1.4.1 1.4.1
Wireshark Wireshark 1.4.2 1.4.2
Wireshark Wireshark 1.4.3 1.4.3
Wireshark Wireshark 1.4.4 1.4.4
Red Hat Enterprise Linux 6 RedHat wireshark-0:1.2.15-2.el6_2.1 *
Wireshark Ubuntu hardy *
Wireshark Ubuntu lucid *
Wireshark Ubuntu maverick *
Wireshark Ubuntu upstream *

References