CVE-2012-0068 — Vulnetix

Try Vulnetix Request Demo

CVE-2012-0068 PUBLISHED CVSS 4.300000190734863 MEDIUM

The lanalyzer_read function in wiretap/lanalyzer.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a Novell capture file containing a record that is too small.

EPSS 1.60% · 81.6th percentile

Risk Scores

CVSS v2.0

4.300000190734863

EPSS Score

1.60%

81.6th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
wireshark	wireshark	1.4.0, 1.4.1, 1.4.2

Timeline

Apr 11, 2012 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
Jul 10, 2023 EPSS Score
Aug 31, 2023 EPSS Score

References

[oss-security] 20120119 Re: CVE request: Wireshark multiple vulnerabilities mailing-list
54425 third-party-advisory
http://www.wireshark.org/security/wnpa-sec-2012-01.html url
[oss-security] 20120111 Re: CVE request: Wireshark multiple vulnerabilities mailing-list
47494 third-party-advisory
GLSA-201308-05 vendor-advisory
http://anonsvn.wireshark.org/viewvc?view=revision&revision=40169 url
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6670 url
oval:org.mitre.oval:def:15379 vdb
https://nvd.nist.gov/vuln/detail/CVE-2012-0068 advisory

Open in Interactive Console →