Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6113

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-6113
Last Modified 09 Mar 2011 12:00:00
Published 23 Nov 2007 03:46:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6113

Summary

Integer signedness error in the DNP3 dissector in Wireshark (formerly Ethereal) 0.10.12 to 0.99.6 allows remote attackers to cause a denial of service (long loop) via a malformed DNP3 packet.

Vulnerable Systems

Application

  • Wireshark 0.10.12

  • Wireshark 0.10.13

  • Wireshark 0.10.14

  • Wireshark 0.10.2

  • Wireshark 0.10.3

  • Wireshark 0.10.4

  • Wireshark 0.10.5

  • Wireshark 0.10.6

  • Wireshark 0.10.7

  • Wireshark 0.10.8

  • Wireshark 0.10.9

  • Wireshark 0.6

  • Wireshark 0.7.9

  • Wireshark 0.8.16

  • Wireshark 0.8.19

  • Wireshark 0.8.20

  • Wireshark 0.9.10

  • Wireshark 0.9.14

  • Wireshark 0.9.15

  • Wireshark 0.9.2

  • Wireshark 0.9.5

  • Wireshark 0.9.6

  • Wireshark 0.9.7

  • Wireshark 0.9.8

  • Wireshark 0.99

  • Wireshark 0.99.0

  • Wireshark 0.99.1

  • Wireshark 0.99.2

  • Wireshark 0.99.3

  • Wireshark 0.99.4

  • Wireshark 0.99.5

  • Wireshark 0.99.6


References

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2007-03.html

BID - 26532

FEDORA - FEDORA-2007-4690

FEDORA - FEDORA-2007-4590

CONFIRM - https://issues.rpath.com/browse/RPL-1975

XF - wireshark-dnp3-dos(36392)

VUPEN - ADV-2007-3956

SECTRACK - 1018635

BUGTRAQ - 20080103 rPSA-2008-0004-1 tshark wireshark

BUGTRAQ - 20070904 Wireshark DNP3 Dissector Infinite Loop Vulnerability

MISC - http://www.securiteam.com/securitynews/5LP0V00MAI.html

REDHAT - RHSA-2008:0059

REDHAT - RHSA-2008:0058

MILW0RM - 4347

MANDRIVA - MDVSA-2008:1

MANDRIVA - MDVSA-2008:001

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004

SECTRACK - 1018988

SREASON - 3095

GENTOO - GLSA-200712-23

SECUNIA - 29048

SECUNIA - 28583

SECUNIA - 28564

SECUNIA - 28325

SECUNIA - 28304

SECUNIA - 28288

SECUNIA - 28207

SECUNIA - 28197

SECUNIA - 27777

SUSE - SUSE-SR:2008:004

MISC - http://bugs.gentoo.org/show_bug.cgi?id=199958


Last Updated: 27 May 2016 10:46:22