fkie_cve-2011-0444
Vulnerability from fkie_nvd
Published
2011-01-13 01:00
Modified
2024-11-21 01:23
Severity ?
Summary
Buffer overflow in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) in Wireshark 1.2.0 through 1.2.13 and 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of RARs.
References
cve@mitre.orghttp://lists.fedoraproject.org/pipermail/package-announce/2011-February/053650.html
cve@mitre.orghttp://lists.fedoraproject.org/pipermail/package-announce/2011-February/053669.html
cve@mitre.orghttp://osvdb.org/70403
cve@mitre.orghttp://secunia.com/advisories/43175
cve@mitre.orghttp://www.mandriva.com/security/advisories?name=MDVSA-2011:007
cve@mitre.orghttp://www.redhat.com/support/errata/RHSA-2011-0369.html
cve@mitre.orghttp://www.securityfocus.com/bid/45775
cve@mitre.orghttp://www.vupen.com/english/advisories/2011/0079Vendor Advisory
cve@mitre.orghttp://www.vupen.com/english/advisories/2011/0104
cve@mitre.orghttp://www.vupen.com/english/advisories/2011/0270
cve@mitre.orghttp://www.vupen.com/english/advisories/2011/0719
cve@mitre.orghttp://www.wireshark.org/security/wnpa-sec-2011-01.html
cve@mitre.orghttp://www.wireshark.org/security/wnpa-sec-2011-02.html
cve@mitre.orghttps://bugs.wireshark.org/bugzilla/attachment.cgi?id=5676Patch
cve@mitre.orghttps://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5530Patch
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/64624
cve@mitre.orghttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14283
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053650.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053669.html
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/70403
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43175
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2011:007
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2011-0369.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/45775
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0079Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0104
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0270
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0719
af854a3a-2127-422b-91ae-364da2661108http://www.wireshark.org/security/wnpa-sec-2011-01.html
af854a3a-2127-422b-91ae-364da2661108http://www.wireshark.org/security/wnpa-sec-2011-02.html
af854a3a-2127-422b-91ae-364da2661108https://bugs.wireshark.org/bugzilla/attachment.cgi?id=5676Patch
af854a3a-2127-422b-91ae-364da2661108https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5530Patch
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/64624
af854a3a-2127-422b-91ae-364da2661108https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14283
Impacted products
Vendor Product Version
wireshark wireshark 1.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.1
wireshark wireshark 1.2.2
wireshark wireshark 1.2.3
wireshark wireshark 1.2.4
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.2.7
wireshark wireshark 1.2.8
wireshark wireshark 1.2.9
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.4.0
wireshark wireshark 1.4.1
wireshark wireshark 1.4.2


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "26CB9265-B7A4-4EB4-9C20-F747F3786C9D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B9A59A8-7319-4F1F-AA1D-801B5F7C1974",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B0059BA2-86B2-4DA5-A6C1-7248D07BB37C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C13C7D5-D344-45D2-9FF0-2C3388C94584",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "1D79DA61-F97C-4DCB-A2B7-FE67C5F10964",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "84D6DFA0-53A2-424C-A31C-88FD683E5674",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "4B441815-DF95-462C-B9F9-43E2F0B04A45",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D09E4C0-0C75-4227-87E0-F2A06E240003",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DE4A9E3-5542-4483-9FA3-7F39C644563B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "FD8A1D30-CB46-4B3D-BED5-1D045F3E1058",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "977DA99C-54EC-4DEA-AD8B-E71C5F77022F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "8ECDB7F8-F97B-440E-98DB-893C4714D47B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "27611804-AED3-443B-B1AE-25F8337FFA49",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "77B9C6C4-A6CE-45D0-BE6C-B29E5C7A45C5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.2.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "7B7726D3-607C-4D34-9FBE-ACBDCB1188E5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "ABB6F1D5-64CC-474D-B123-818080ED7903",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5E0F58D-4CE5-4051-A0F6-9BFA2FC0D2DB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:wireshark:wireshark:1.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC3D171-73D0-4A14-A2AA-60C9739CD840",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) in Wireshark 1.2.0 through 1.2.13 and 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of RARs."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en el disector MAC-LTE (epan/dissectors/packet-mac-lte.c) en Wireshark v1.2.0 hasta v1.2.13 y v1.4.0 hasta v1.4.2 permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) y, posiblemente, ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un gran n\u00famero de RAR."
    }
  ],
  "id": "CVE-2011-0444",
  "lastModified": "2024-11-21T01:23:59.553",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2011-01-13T01:00:02.553",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053650.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053669.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/70403"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/43175"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:007"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2011-0369.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/45775"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2011/0079"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2011/0104"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2011/0270"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2011/0719"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.wireshark.org/security/wnpa-sec-2011-01.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.wireshark.org/security/wnpa-sec-2011-02.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "https://bugs.wireshark.org/bugzilla/attachment.cgi?id=5676"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5530"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64624"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14283"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053650.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053669.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/70403"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/43175"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:007"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2011-0369.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/45775"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2011/0079"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2011/0104"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2011/0270"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2011/0719"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.wireshark.org/security/wnpa-sec-2011-01.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.wireshark.org/security/wnpa-sec-2011-02.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://bugs.wireshark.org/bugzilla/attachment.cgi?id=5676"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5530"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64624"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14283"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.