Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3484

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-3484
Last Modified 13 Aug 2012 11:30:16
Published 20 Sep 2011 06:55:05
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-3484

Summary

The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial of service (loop and application crash) via a malformed packet.

Vulnerable Systems

Application

  • Wireshark 1.6.0

  • Wireshark 1.6.1


References

CONFIRM - https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6138

CONFIRM - http://anonsvn.wireshark.org/viewvc?view=revision&revision=38213

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=737787

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2011-12.html

MLIST - [oss-security] 20110914 Re: CVE Request: Multiple issues fixed in wireshark 1.6.2

MLIST - [oss-security] 20110913 CVE Request: Multiple issues fixed in wireshark 1.6.2

MANDRIVA - MDVSA-2011:138


Last Updated: 27 May 2016 10:57:42