PT-2008-4559 · Wireshark · Wireshark
Published
2008-07-10
·
Updated
2018-10-11
·
CVE-2008-3140
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
Wireshark version 1.0.0
Description:
The issue allows remote attackers to cause a denial of service, resulting in an application crash, via unknown vectors. This is possibly related to an incomplete SS7 MSU syslog encapsulated packet.
Recommendations:
For Wireshark version 1.0.0, consider disabling the syslog dissector as a temporary workaround until a patch is available. Restrict access to the syslog dissector to minimize the risk of exploitation.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Wireshark