VDB
CVE-2011-1959
CVE-2011-1959
PUBLISHED
Reported by redhat · Published June 6, 2011
The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (application crash) via a large length value in a snoop file that triggers a stack-based buffer over-read.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Exploit Intelligence
Timeline
- Jun 6, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
References
- wireshark-snoop-dos(67792) vdb-entryx_refsource_XF
- 44958 third-party-advisoryx_refsource_SECUNIA
- FEDORA-2011-7846 vendor-advisoryx_refsource_FEDORA
- x_refsource_CONFIRM
- RHSA-2013:0125 vendor-advisoryx_refsource_REDHAT
- x_refsource_CONFIRM
- 48947 third-party-advisoryx_refsource_SECUNIA
- x_refsource_CONFIRM
- 48066 vdb-entryx_refsource_BID
- x_refsource_CONFIRM
- x_refsource_CONFIRM
- DSA-2274 vendor-advisoryx_refsource_DEBIAN
- 44449 third-party-advisoryx_refsource_SECUNIA
- [oss-security] 20110601 Re: CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues mailing-listx_refsource_MLIST
- [oss-security] 20110601 Re: CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues mailing-listx_refsource_MLIST
- FEDORA-2011-7821 vendor-advisoryx_refsource_FEDORA
- [oss-security] 20110531 CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues mailing-listx_refsource_MLIST
- FEDORA-2011-7858 vendor-advisoryx_refsource_FEDORA
- 45149 third-party-advisoryx_refsource_SECUNIA
- oval:org.mitre.oval:def:14656 vdb-entrysignaturex_refsource_OVAL