Launchpad.net

CVE 2008-3140

The syslog dissector in Wireshark (formerly Ethereal) 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors, possibly related to an "incomplete SS7 MSU syslog encapsulated packet."

Related bugs and status

CVE-2008-3140 (Candidate) is related to these bugs:

Bug #245774: Wireshark 1.0.2 fixes multiple vulnerabilities

Summary				In	Importance	Status
	245774	Wireshark 1.0.2 fixes multiple vulnerabilities		wireshark (Ubuntu)	Medium	Fix Released
	245774	Wireshark 1.0.2 fixes multiple vulnerabilities		Wireshark	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.wireshark.o...
BID: 30020
SECUNIA: 30886
GENTOO: GLSA-200808-04
SUSE: SUSE-SR:2008:017
SECUNIA: 31378
SECUNIA: 31687
VUPEN: ADV-2008-1982
CONFIRM: http://wiki.rpath.com/...
FEDORA: FEDORA-2008-6440
SECTRACK: 1020404
SECUNIA: 30942
SECUNIA: 31085
XF: wireshark-syslog-dos(4...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20080703 rPSA-2008-021...