CVE-2013-2481 | Vulnerability Database | Aqua Security

Integer signedness error in the dissect_mount_dirpath_call function in epan/dissectors/packet-mount.c in the Mount dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6, when nfs_file_name_snooping is enabled, allows remote attackers to cause a denial of service (application crash) via a negative length value.

Affected Software

Name	Vendor	Start Version	End Version
Wireshark	Wireshark	1.8.0 (including)	1.8.0 (including)
Wireshark	Wireshark	1.8.1 (including)	1.8.1 (including)
Wireshark	Wireshark	1.8.2 (including)	1.8.2 (including)
Wireshark	Wireshark	1.8.3 (including)	1.8.3 (including)
Wireshark	Wireshark	1.8.4 (including)	1.8.4 (including)
Wireshark	Wireshark	1.8.5 (including)	1.8.5 (including)
Wireshark	Ubuntu	hardy	*
Wireshark	Ubuntu	lucid	*
Wireshark	Ubuntu	oneiric	*
Wireshark	Ubuntu	precise	*
Wireshark	Ubuntu	quantal	*
Wireshark	Ubuntu	raring	*
Wireshark	Ubuntu	saucy	*
Wireshark	Ubuntu	upstream	*

References

http://anonsvn.wireshark.org/viewvc/trunk/epan/dissectors/packet-mount.c?r1=47672\u0026r2=47671\u0026pathrev=47672
http://anonsvn.wireshark.org/viewvc?view=revision\u0026revision=47672
http://lists.opensuse.org/opensuse-updates/2013-03/msg00065.html
http://lists.opensuse.org/opensuse-updates/2013-03/msg00077.html
http://secunia.com/advisories/52471
http://www.debian.org/security/2013/dsa-2644
http://www.wireshark.org/docs/relnotes/wireshark-1.6.14.html
http://www.wireshark.org/docs/relnotes/wireshark-1.8.6.html
http://www.wireshark.org/security/wnpa-sec-2013-16.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=8335
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16420

NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-2481
CWE	https://cwe.mitre.org/data/definitions/189.html