VDB

CVE-2008-3145

CVE-2008-3145 PUBLISHED CVSS 5 MEDIUM

The fragment_add_work function in epan/reassemble.c in Wireshark 0.8.19 through 1.0.1 allows remote attackers to cause a denial of service (crash) via a series of fragmented packets with non-sequential fragmentation offset values, which lead to a buffer over-read.

EPSS 2.42% · 85.4th percentile

Risk Scores

CVSS 2.0
5
EPSS Score
2.42%
85.4th percentile

Affected Products

VendorProductVersions
wiresharkwireshark0.99.7, 0.8.19, 0.99.0
n/an/an/a

Timeline

  • Jul 16, 2008 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 9, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 3, 2023 EPSS Score
  • Jul 17, 2023 EPSS Score
  • Sep 8, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›