PT-2009-3240 · Wireshark+1 · Wireshark+1

Publicado

2009-02-16

Atualizado

2018-10-10

CVE-2009-0599

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Wireshark versions 0.99.7 through 1.0.5

Description The issue is related to a buffer overflow in the wiretap/netscreen.c file, which can be triggered by a malformed NetScreen snoop file. This allows remote attackers, assisted by local users, to cause a denial of service, resulting in the application crashing.

Recommendations For Wireshark versions 0.99.7 through 1.0.5, consider disabling the wiretap/netscreen.c module until a patch is available to prevent the buffer overflow. As a temporary workaround, avoid using malformed NetScreen snoop files to minimize the risk of exploitation.

Exploit

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2009-0599

RHSA-2009:0313

RHSA-2009_0313

Produtos afetados

Red Hat

Wireshark

PT-2009-3240 · Wireshark+1 · Wireshark+1

CVE-2009-0599

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 36