Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1590

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-1590
Last Modified 03 Jan 2013 11:27:02
Published 29 Apr 2011 06:55:02
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1590

Summary

The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.

Vulnerable Systems

Application

  • Wireshark 1.2.0

  • Wireshark 1.2.1

  • Wireshark 1.2.10

  • Wireshark 1.2.11

  • Wireshark 1.2.12

  • Wireshark 1.2.13

  • Wireshark 1.2.14

  • Wireshark 1.2.15

  • Wireshark 1.2.2

  • Wireshark 1.2.3

  • Wireshark 1.2.4

  • Wireshark 1.2.5

  • Wireshark 1.2.6

  • Wireshark 1.2.7

  • Wireshark 1.2.8

  • Wireshark 1.2.9

  • Wireshark 1.4.0

  • Wireshark 1.4.1

  • Wireshark 1.4.2

  • Wireshark 1.4.3

  • Wireshark 1.4.4


References

CONFIRM - https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5754

MLIST - [oss-security] 20110418 Re: Wireshark 1.2.16 / 1.4.5

MLIST - [oss-security] 20110418 Wireshark 1.2.16 / 1.4.5

CONFIRM - http://anonsvn.wireshark.org/viewvc?revision=36608&view=revision

SUSE - SUSE-SU-2011:0611

CONFIRM - https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5793

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2011-06.html

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2011-05.html

VUPEN - ADV-2011-1106

VUPEN - ADV-2011-1022

OSVDB - 71846

MANDRIVA - MDVSA-2011:083

DEBIAN - DSA-2274

SECTRACK - 1025388

SECUNIA - 45149

SECUNIA - 44822

SECUNIA - 44374

SECUNIA - 44172

FEDORA - FEDORA-2011-5529

FEDORA - FEDORA-2011-5569

FEDORA - FEDORA-2011-5621

SECUNIA - 48947


Last Updated: 27 May 2016 11:01:33