Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1210

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2009-1210
Last Modified 29 Dec 2011 12:00:00
Published 01 Apr 2009 06:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1210

Summary

Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Wireshark 0.10

  • Wireshark 0.10.1

  • Wireshark 0.10.10

  • Wireshark 0.10.11

  • Wireshark 0.10.12

  • Wireshark 0.10.13

  • Wireshark 0.10.14

  • Wireshark 0.10.2

  • Wireshark 0.10.3

  • Wireshark 0.10.4

  • Wireshark 0.10.5

  • Wireshark 0.10.6

  • Wireshark 0.10.7

  • Wireshark 0.10.8

  • Wireshark 0.10.9

  • Wireshark 0.6

  • Wireshark 0.7.9

  • Wireshark 0.8.16

  • Wireshark 0.8.19

  • Wireshark 0.9.10

  • Wireshark 0.9.14

  • Wireshark 0.9.5

  • Wireshark 0.9.7

  • Wireshark 0.9.8

  • Wireshark 0.99

  • Wireshark 0.99.0

  • Wireshark 0.99.1

  • Wireshark 0.99.2

  • Wireshark 0.99.3

  • Wireshark 0.99.4

  • Wireshark 0.99.5

  • Wireshark 0.99.6

  • Wireshark 0.99.6a

  • Wireshark 0.99.7

  • Wireshark 0.99.8

  • Wireshark 1.0

  • Wireshark 1.0.0

  • Wireshark 1.0.1

  • Wireshark 1.0.2

  • Wireshark 1.0.3

  • Wireshark 1.0.4

  • Wireshark 1.0.5


References

FEDORA - FEDORA-2009-5382

FEDORA - FEDORA-2009-5339

FEDORA - FEDORA-2009-3599

XF - wireshark-pndcp-format-string(49512)

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2009-02.html

BID - 34291

BUGTRAQ - 20090417 rPSA-2009-0062-1 tshark wireshark

REDHAT - RHSA-2009:1100

MILW0RM - 8308

MANDRIVA - MDVSA-2009:088

DEBIAN - DSA-1785

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2009-0062

SECUNIA - 35464

SECUNIA - 35416

SECUNIA - 35224

SECUNIA - 35133

SECUNIA - 34970

SECUNIA - 34778

SECUNIA - 34542

SUSE - SUSE-SR:2009:011


Last Updated: 27 May 2016 10:50:29