Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-xc26-f3vv-9p8g

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью

Описание

epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

EPSS

Процентиль: 74%
0.00883
Низкий

Дефекты

CWE-20

Связанные уязвимости

ubuntu
больше 11 лет назад

epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

redhat
больше 11 лет назад

epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

nvd
больше 11 лет назад

epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

debian
больше 11 лет назад

epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x b ...

oracle-oval
около 11 лет назад

ELSA-2014-0342: wireshark security update (MODERATE)

EPSS

Процентиль: 74%
0.00883
Низкий

Дефекты

CWE-20