PT-2007-7012 · Wireshark+1 · Wireshark+1

Published

2007-11-23

Updated

2018-10-15

CVE-2007-6113

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Wireshark versions 0.10.12 through 0.99.6

Description The issue is related to an integer signedness error in the DNP3 dissector, which can be exploited by remote attackers to cause a denial of service through a long loop. This can be achieved by sending a malformed DNP3 packet.

Recommendations For versions 0.10.12 through 0.99.6, update to a version that contains a fix for this issue to prevent exploitation.

Exploit

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-189

Related Identifiers

CVE-2007-6113

DTSA-92-1

RHSA-2008:0058

RHSA-2008:0059

RHSA-2008_0058

Affected Products

Red Hat

Wireshark

PT-2007-7012 · Wireshark+1 · Wireshark+1

CVE-2007-6113

Weakness Enumeration

Related Identifiers

Affected Products

References · 53