CVE-2014-4020

2014-06-18 18:55:08 2017-12-29 03:29:22

The dissect_frame function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent an error condition, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Wireshark 1.10.4 Wireshark 1.10.3 Wireshark Wireshark 1.10.2 Wireshark Wireshark 1.10.1 Wireshark 1.10.0 Wireshark 1.10.5 Wireshark 1.10.6 Wireshark 1.10.7

Wireshark - Wireshark

Advisory	Patch	Confirmed	Link
			https://code.wireshark.org/review/gitweb?p=wireshark.git...
			https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9999
			https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1003...
			openSUSE-SU-2014:0836
			http://www.wireshark.org/security/wnpa-sec-2014-07.html

CVE-2014-4020

2014-06-18 18:55:08 2017-12-29 03:29:22

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)