Launchpad CVE tracker

CVE 2011-1959

The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (application crash) via a large length value in a snoop file that triggers a stack-based buffer over-read.

See the

CVE page on Mitre.org for more details.

References

MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://www.debian.org/...
MISC: http://lists.fedorapro...
MISC: http://lists.fedorapro...
MISC: http://lists.fedorapro...
MISC: https://bugzilla.redha...
MISC: http://rhn.redhat.com/...
MISC: http://openwall.com/li...
MISC: http://openwall.com/li...
MISC: http://openwall.com/li...
MISC: http://anonsvn.wiresha...
MISC: http://www.wireshark.o...
MISC: http://www.wireshark.o...
MISC: https://bugs.wireshark...
MISC: https://oval.cisecurit...
MISC: https://exchange.xforc...

Launchpad.net

CVE 2011-1959

Related bugs

References