Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-10895

Опубликовано: 09 апр. 2019
Источник: debian
EPSS Средний

Описание

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
wiresharkfixed2.6.8-1package

Примечания

  • https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15497

  • https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2fbbde780e5d5d82e31dca656217daf278cf62bb

  • https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=38680c4c69f9f4e0f39e29b66fe2b02d88eb629d

  • introduced bug: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=1660f7437198113c0c90cec22daa6abcd3af22cc

  • https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cab0cff6abdd7a5b5b0bfa4ee204eea951e129e9

  • https://www.wireshark.org/security/wnpa-sec-2019-09.html

EPSS

Процентиль: 94%
0.12624
Средний

Связанные уязвимости

ubuntu логотип

CVE-2019-10895

CVSS3: 7.5
ubuntu
почти 7 лет назад

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation.

redhat логотип

CVE-2019-10895

CVSS3: 6.5
redhat
почти 7 лет назад

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation.

nvd логотип

CVE-2019-10895

CVSS3: 7.5
nvd
почти 7 лет назад

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation.

github логотип

GHSA-4cxv-gmm7-q86r

CVSS3: 7.5
github
почти 4 года назад

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation.

fstec логотип

BDU:2020-02570

CVSS3: 7.5
fstec
почти 7 лет назад

Уязвимость модуля NetScaler (Netscaler.c) анализатора трафика компьютерных сетей Wireshark, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 94%
0.12624
Средний