Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2011-1959

Disclosure Date: June 06, 2011
CVE-2011-1959
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (application crash) via a large length value in a snoop file that triggers a stack-based buffer over-read.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

References

Canonical
CVE-2011-1959 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1959)
BID-48066 (http://www.securityfocus.com/bid/48066)
Advisory
XF-wireshark-snoop-dos(67792) (https://exchange.xforce.ibmcloud.com/vulnerabilities/67792)
SECUNIA-44958 (http://secunia.com/advisories/44958)
FEDORA-2011-7846 (http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061437.html)
http://www.wireshark.org/security/wnpa-sec-2011-07.html
http://rhn.redhat.com/errata/RHSA-2013-0125.html
https://bugzilla.redhat.com/show_bug.cgi?id=710039
SECUNIA-48947 (http://secunia.com/advisories/48947)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5912
http://anonsvn.wireshark.org/viewvc?view=revision&revision=37068
http://www.wireshark.org/security/wnpa-sec-2011-08.html
DSA-2274 (http://www.debian.org/security/2011/dsa-2274)
SECUNIA-44449 (http://secunia.com/advisories/44449)
[oss-security] 20110601 Re: CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues (http://openwall.com/lists/oss-security/2011/06/01/11)
[oss-security] 20110601 Re: CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues (http://openwall.com/lists/oss-security/2011/06/01/1)
FEDORA-2011-7821 (http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061290.html)
[oss-security] 20110531 CVE request for Wireshark 1.4.6/1.2.16 Multiple DoS issues (http://openwall.com/lists/oss-security/2011/05/31/20)
FEDORA-2011-7858 (http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061477.html)
SECUNIA-45149 (http://secunia.com/advisories/45149)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14656

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis