Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a denial of service (hang) via a crafted NCP packet that triggers an infinite loop.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P
Vendors Products
Wireshark
  • Wireshark

Configuration 1 [-]

OR cpe:2.3:a:wireshark:wireshark:0.9.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.4:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.6:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.9:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.10:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.11:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.12:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.13:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.10.14:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.6a:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*
References
Link Resource
http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2675
http://secunia.com/advisories/31864
http://secunia.com/advisories/31886
http://secunia.com/advisories/32028
http://secunia.com/advisories/32091
http://security.gentoo.org/glsa/glsa-200809-17.xml
http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0278
http://www.mandriva.com/security/advisories?name=MDVSA-2008:199
http://www.redhat.com/support/errata/RHSA-2008-0890.html
http://www.securityfocus.com/archive/1/496487/100/0/threaded
http://www.securitytracker.com/id?1020819
http://www.vupen.com/english/advisories/2008/2493
http://www.vupen.com/english/advisories/2008/2773
http://www.wireshark.org/security/wnpa-sec-2008-05.html Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/45309
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11273
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00713.html
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00715.html
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2008-09-04T19:00:00

Updated: 2018-10-11T19:57:01

Reserved: 2008-09-04T00:00:00

Link: CVE-2008-3932

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2008-09-04T19:41:00.000

Modified: 2023-02-13T02:19:29.507

Link: CVE-2008-3932

JSON object: View

cve-icon Redhat Information

No data.

CWE