CVE-2018-7419

Опубликовано: 18 фев. 2018

Источник: redhat

CVSS3: 3.3

Описание

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/nbap.cnf by ensuring DCH ID initialization.

A denial of service flaw was found in the NBAP dissector in Wireshark. A remote network attacker could potentially use this flaw to crash Wireshark by tricking it into processing a crafted packet.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	wireshark	Not affected
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-665

https://bugzilla.redhat.com/show_bug.cgi?id=1549308wireshark: NBAP dissector crash in nbap.cnf

3.3 Low

CVSS3

Связанные уязвимости

CVE-2018-7419

CVSS3: 7.5

ubuntu

почти 8 лет назад

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/nbap.cnf by ensuring DCH ID initialization.

CVE-2018-7419

CVSS3: 7.5

nvd

почти 8 лет назад

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/nbap.cnf by ensuring DCH ID initialization.

CVE-2018-7419

CVSS3: 7.5

debian

почти 8 лет назад

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector co ...

GHSA-qhpm-8p8j-gwv9

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/nbap.cnf by ensuring DCH ID initialization.

openSUSE-SU-2018:0540-1

suse-cvrf

почти 8 лет назад

Security update for wireshark

3.3 Low

CVSS3