CVE-2008-4680
Published Oct 22, 2008
Last updated 6 years ago
Overview
- Description
- packet-usb.c in the USB dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a malformed USB Request Block (URB).
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-399
Social media
- Hype score
- Not currently trending
Vendor comments
- Red HatThis issue has been addressed in Wireshark packages as shipped in Red Hat Enterprise Linux 3, 4 and 5 via: https://rhn.redhat.com/errata/RHSA-2009-0313.html
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F2F7D104-7498-4C5F-AE75-6F04D5DA35B1"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "801B1795-3DC4-4BE3-A693-37B6BD116B14"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "17808311-AC2A-428A-BB8B-B08549C5DAEB"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "978C483C-A6F7-456F-9488-833D520D4A1E"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5BB94CE6-03D3-43C3-B765-AC36961CD83C"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "37FADA30-FD98-42F3-80F1-E8794C77AC76"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8541E3F7-6DCF-4070-ACB0-C6B9C7BE32D2"
}
],
"operator": "OR"
}
]
}
]