Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-4378

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2009-4378
Last Modified 13 Jan 2012 10:41:19
Published 21 Dec 2009 04:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-4378

Summary

The IPMI dissector in Wireshark 1.2.0 through 1.2.4 on Windows allows remote attackers to cause a denial of service (crash) via a crafted packet, related to "formatting a date/time using strftime."

Vulnerable Systems

Application

  • Wireshark 1.2.0

  • Wireshark 1.2.1

  • Wireshark 1.2.2

  • Wireshark 1.2.3

  • Wireshark 1.2.4


References

VUPEN - ADV-2009-3596

FEDORA - FEDORA-2009-13592

CONFIRM - https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4301

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2009-09.html

SECTRACK - 1023374

BID - 37407

SECUNIA - 37842

OSVDB - 61179

CONFIRM - https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4319


Last Updated: 27 May 2016 10:58:02