Описание
wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | |
| bionic | not-affected | |
| devel | not-affected | |
| esm-apps/bionic | not-affected | |
| esm-apps/xenial | released | 2.2.6+g32dac6a-2ubuntu0.16.04 |
| esm-infra-legacy/trusty | released | 1.12.1+g01b65bf-4+deb8u11ubuntu0.14.04.1 |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | released | 1.12.1+g01b65bf-4+deb8u11ubuntu0.14.04.1 |
| trusty/esm | released | 1.12.1+g01b65bf-4+deb8u11ubuntu0.14.04.1 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
5.9 Medium
CVSS3
Связанные уязвимости
wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x b ...
wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
EPSS
4.3 Medium
CVSS2
5.9 Medium
CVSS3