Multiple integer underflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (loop) via vectors related to the R3 dissector, a different vulnerability than CVE-2012-2392.
Vector
ADJACENT_NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL
Wireshark 1.6.7
Wireshark 1.4.9
Wireshark 1.6.6
Wireshark 1.4.8
Wireshark 1.6.5
Wireshark 1.4.7
Wireshark 1.6.0
Wireshark 1.4.2
Wireshark 1.4.1
Wireshark 1.4.0
Wireshark 1.4.11
Wireshark 1.4.10
Wireshark 1.6.4
Wireshark 1.4.6
Wireshark 1.6.3
Wireshark 1.4.5
Wireshark 1.6.2
Wireshark 1.4.4
Wireshark 1.6.1
Wireshark 1.4.3
Wireshark 1.4.13
Wireshark 1.4.12
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7125 | |||
| http://www.wireshark.org/security/wnpa-sec-2012-08.html | |||
| 1027094 |