CVE-2011-1592
Published Apr 29, 2011
Last updated 7 years ago
Overview
- Description
- The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-189
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ABB6F1D5-64CC-474D-B123-818080ED7903"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A5E0F58D-4CE5-4051-A0F6-9BFA2FC0D2DB"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CC3D171-73D0-4A14-A2AA-60C9739CD840"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CF840746-1797-4ACC-8AFD-8FBD97E9F706"
},
{
"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87AA0CD8-5F45-4F3C-B72E-6D94EA4B2C8B"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]