NVD

Id
4498  
Name
CVE-2008-4684  
Description
packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly handle exceptions thrown by post dissectors, which allows remote attackers to cause a denial of service (application crash) via a certain series of packets, as demonstrated by enabling the (1) PRP or (2) MATE post dissector.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-03  
Published
2008-10-22  
Modified Date
2012-08-13  
Seq
2008-4684  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
28299 4498 CVE-2008-4684 oval:org.mitre.oval:def:10223  View
28300 4498 CVE-2008-4684 oval:org.mitre.oval:def:14767  View
28301 4498 CVE-2008-4684 1021069  View
28302 4498 CVE-2008-4684 http://support.avaya.com/elmodocs2/security/ASA-2009-082.htm  View
28303 4498 CVE-2008-4684 http://wiki.rpath.com/Advisories:rPSA-2008-0336  View
28304 4498 CVE-2008-4684 DSA-1673  View
28305 4498 CVE-2008-4684 MDVSA-2008:215  View
28306 4498 CVE-2008-4684 RHSA-2009:0313  View
28307 4498 CVE-2008-4684 20081211 rPSA-2008-0336-1 tshark wireshark  View
28308 4498 CVE-2008-4684 31838  View
28309 4498 CVE-2008-4684 ADV-2008-2872  View
28310 4498 CVE-2008-4684 http://www.wireshark.org/security/wnpa-sec-2008-06.html  View
28311 4498 CVE-2008-4684 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2549  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
51040 JVNDB-2008-006350 Wireshark の packet-frame におけるサービス運用妨害 (DoS) の脆弱性 Wireshark の packet-frame は、解析子の後に発生した例外を適切に処理しないため、サービス運用妨害 (アプリケーションクラッシュ) 状態となる脆弱性が存在します。 CVE-2008-4684 34797 CVE-2008-4684 4498 4.3 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-006350.html 2008-05-16 2012-12-20 View