CVE-2012-6058

2012-12-05 12:57:20 2017-09-19 03:35:32

Integer overflow in the dissect_icmpv6 function in epan/dissectors/packet-icmpv6.c in the ICMPv6 dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted Number of Sources value.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Wireshark 1.6.8 Wireshark 1.6.7 Wireshark 1.6.6 Wireshark 1.6.5 Wireshark 1.8.3 Wireshark 1.6.0 Wireshark 1.6.10 Wireshark 1.6.11 Wireshark 1.6.9 Wireshark 1.6.4 Wireshark 1.8.2 Wireshark 1.6.3 Wireshark 1.8.1 Wireshark 1.6.2 Wireshark 1.8.0 Wireshark 1.6.1

Wireshark - Wireshark

Advisory	Patch	Confirmed	Link
			http://www.wireshark.org/security/wnpa-sec-2012-40.html
			openSUSE-SU-2013:0151
			openSUSE-SU-2012:1633
			http://anonsvn.wireshark.org/viewvc?view=revision&revisi...
			http://anonsvn.wireshark.org/viewvc/trunk/epan/dissector...
			https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7844

CVE-2012-6058

2012-12-05 12:57:20 2017-09-19 03:35:32

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)