CVE-2009-3829

Опубликовано: 30 окт. 2009

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*

Версия до 1.2.1 (включая)

cpe:2.3:a:wireshark:wireshark:0.6:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.7.9:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.8.16:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.8.19:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.8.20:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.9.2:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.9.5:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.9.6:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.9.7:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.9.8:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.9.10:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.9.14:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.1:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.2:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.3:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.4:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.5:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.6:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.7:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.8:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.9:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.10:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.11:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.12:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.13:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.10.14:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.0:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.1:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.6a:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:0.99.9:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.3:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.4:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.5:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.6:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.7:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.8:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.0.9:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.2:*:*:*:*:*:*:*

cpe:2.3:a:wireshark:wireshark:1.2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05591

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-189

Связанные уязвимости

CVE-2009-3829

ubuntu

больше 15 лет назад

CVE-2009-3829

redhat

больше 15 лет назад

CVE-2009-3829

debian

больше 15 лет назад

Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows rem ...

GHSA-qq8v-pv8c-pf8x

github

около 3 лет назад

ELSA-2010-0360

oracle-oval

около 15 лет назад

ELSA-2010-0360: wireshark security update (MODERATE)

EPSS

Процентиль: 90%

0.05591

Низкий

9.3 Critical

CVSS2

Дефекты

CWE-189