PT-2012-5321 · Wireshark · Wireshark

Laurent Butti

Published

2012-08-16

Updated

2024-06-15

CVE-2012-4294

CVSS v2.0

5.8

Medium

Vector

AV:A/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Wireshark versions 1.8.0 through 1.8.1

Description A buffer overflow issue exists in the channelised fill sdh g707 format function in the ERF dissector, allowing remote attackers to execute arbitrary code via a large speed value.

Recommendations For Wireshark versions 1.8.0 through 1.8.1, update to version 1.8.2 or later to resolve the issue.

Exploit

Fix

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2012-4294

OPENSUSE-SU-2024:10199-1

Affected Products

Wireshark

PT-2012-5321 · Wireshark · Wireshark

CVE-2012-4294

Weakness Enumeration

Related Identifiers

Affected Products

References · 283