CVE-2013-4075

Опубликовано: 07 июн. 2013

Источник: redhat

CVSS2: 4.3

EPSS Низкий

Описание

epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

A flaw was found in GMR (Geo-Mobile Radio) 1 BCCH protocol dissector of wireshark which an attacker can trigger a denial of service attack and crash wireshark by sending a specially crafted packet onto the wire or by convincing wireshark user to read malformed packet trace file.

Отчет

Red Hat Product Security has rated this issue as having Low security impact for Red Hat Enterprise Linux 6. It does not affect the version of wireshark shipped with Red Hat Enterprise Linux 5. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	wireshark	Not affected
Red Hat Enterprise Linux 6	wireshark	Fixed	RHSA-2017:0631	21.03.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=972680wireshark: DoS (crash) in the GMR-1 BCCH dissector (wnpa-sec-2013-33)

EPSS

Процентиль: 67%

0.00566

Низкий

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2013-4075

ubuntu

около 12 лет назад

CVE-2013-4075

nvd

около 12 лет назад

CVE-2013-4075

debian

около 12 лет назад

epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wire ...

GHSA-2hcx-hqxr-wjjp

github

больше 3 лет назад

ELSA-2017-0631

oracle-oval

больше 8 лет назад

ELSA-2017-0631: wireshark security and bug fix update (MODERATE)

EPSS

Процентиль: 67%

0.00566

Низкий

4.3 Medium

CVSS2