Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4049

Overview

Vulnerability Score 2.9 2.9
CVE Id CVE-2012-4049
Last Modified 23 Sep 2014 01:26:54
Published 24 Jul 2012 03:55:03
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector ADJACENT_NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4049

Summary

epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet.

Vulnerable Systems

Application

  • Wireshark 1.4.0

  • Wireshark 1.4.1

  • Wireshark 1.4.10

  • Wireshark 1.4.11

  • Wireshark 1.4.12

  • Wireshark 1.4.13

  • Wireshark 1.4.2

  • Wireshark 1.4.3

  • Wireshark 1.4.4

  • Wireshark 1.4.5

  • Wireshark 1.4.6

  • Wireshark 1.4.7

  • Wireshark 1.4.8

  • Wireshark 1.4.9

  • Wireshark 1.6.0

  • Wireshark 1.6.1

  • Wireshark 1.6.2

  • Wireshark 1.6.3

  • Wireshark 1.6.4

  • Wireshark 1.6.5

  • Wireshark 1.6.6

  • Wireshark 1.6.7

  • Wireshark 1.6.8

  • Wireshark 1.8.0


References

CONFIRM - https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7436

CONFIRM - http://www.wireshark.org/security/wnpa-sec-2012-12.html

CONFIRM - http://anonsvn.wireshark.org/viewvc?view=revision&revision=43576

CONFIRM - http://anonsvn.wireshark.org/viewvc/trunk/epan/dissectors/packet-nfs.c?r1=43576&r2=43575&pathrev=43576

SUSE - openSUSE-SU-2012:0930

GENTOO - GLSA-201308-05

SECUNIA - 54425

SECUNIA - 49971

Related Patches

Novell SUSE 2012:6760 wireshark security update for SLE 11 SP2 i586

Novell SUSE 2012:6760 wireshark security update for SLE 11 SP2 x86_64

Novell SUSE 2012:8267 wireshark security update for SLE 10 SP4 i586

Novell SUSE 2012:8267 wireshark security update for SLE 10 SP4 x86_64


Last Updated: 27 May 2016 11:02:42