CVE-2009-4377
wireshark: invalid pointer dereference in SMB/SMB2 dissectors
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
2
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The (1) SMB and (2) SMB2 dissectors in Wireshark 0.9.0 through 1.2.4 allow remote attackers to cause a denial of service (crash) via a crafted packet that triggers a NULL pointer dereference, as demonstrated by fuzz-2009-12-07-11141.pcap.
El analizador (1) SMB y (2) SMB2 en Wireshark v0.9.0 hasta v1.2.4 permite a atacantes remotos provocar una denegación de servicio (caída) mediante un paquete modificado, como se ha demostrado por fuzz-2009-12-07-11141.pcap.
This advisory updates Wireshark to the version 1.0.11, which fixes The SMB and SMB2 dissectors could crash. The Infiniband dissector could crash on some platforms. Several buffer overflows were discovered and fixed in the LWRES dissector.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-12-21 CVE Reserved
- 2009-12-21 CVE Published
- 2024-08-07 CVE Updated
- 2024-08-07 First Exploit
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (14)
URL | Tag | Source |
---|---|---|
http://osvdb.org/61178 | Vdb Entry | |
http://secunia.com/advisories/37916 | Third Party Advisory | |
http://www.securitytracker.com/id?1023374 | Vdb Entry | |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9564 | Signature |
URL | Date | SRC |
---|---|---|
http://www.securityfocus.com/bid/37407 | 2024-08-07 | |
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4301 | 2024-08-07 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://secunia.com/advisories/37842 | 2017-09-19 | |
http://www.debian.org/security/2009/dsa-1983 | 2017-09-19 | |
http://www.mandriva.com/security/advisories?name=MDVSA-2010:031 | 2017-09-19 | |
http://www.vupen.com/english/advisories/2009/3596 | 2017-09-19 | |
http://www.wireshark.org/security/wnpa-sec-2009-09.html | 2017-09-19 | |
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01248.html | 2017-09-19 | |
https://access.redhat.com/security/cve/CVE-2009-4377 | 2010-04-20 | |
https://bugzilla.redhat.com/show_bug.cgi?id=549578 | 2010-04-20 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.9.2 Search vendor "Wireshark" for product "Wireshark" and version "0.9.2" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.9.5 Search vendor "Wireshark" for product "Wireshark" and version "0.9.5" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.9.6 Search vendor "Wireshark" for product "Wireshark" and version "0.9.6" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.9.7 Search vendor "Wireshark" for product "Wireshark" and version "0.9.7" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.9.8 Search vendor "Wireshark" for product "Wireshark" and version "0.9.8" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.9.10 Search vendor "Wireshark" for product "Wireshark" and version "0.9.10" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.9.14 Search vendor "Wireshark" for product "Wireshark" and version "0.9.14" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99 Search vendor "Wireshark" for product "Wireshark" and version "0.99" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.0 Search vendor "Wireshark" for product "Wireshark" and version "0.99.0" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.1 Search vendor "Wireshark" for product "Wireshark" and version "0.99.1" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.2 Search vendor "Wireshark" for product "Wireshark" and version "0.99.2" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.3 Search vendor "Wireshark" for product "Wireshark" and version "0.99.3" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.4 Search vendor "Wireshark" for product "Wireshark" and version "0.99.4" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.5 Search vendor "Wireshark" for product "Wireshark" and version "0.99.5" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.6 Search vendor "Wireshark" for product "Wireshark" and version "0.99.6" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.6a Search vendor "Wireshark" for product "Wireshark" and version "0.99.6a" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.7 Search vendor "Wireshark" for product "Wireshark" and version "0.99.7" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.8 Search vendor "Wireshark" for product "Wireshark" and version "0.99.8" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 0.99.9 Search vendor "Wireshark" for product "Wireshark" and version "0.99.9" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0 Search vendor "Wireshark" for product "Wireshark" and version "1.0" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.0 Search vendor "Wireshark" for product "Wireshark" and version "1.0.0" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.1 Search vendor "Wireshark" for product "Wireshark" and version "1.0.1" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.2 Search vendor "Wireshark" for product "Wireshark" and version "1.0.2" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.3 Search vendor "Wireshark" for product "Wireshark" and version "1.0.3" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.4 Search vendor "Wireshark" for product "Wireshark" and version "1.0.4" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.5 Search vendor "Wireshark" for product "Wireshark" and version "1.0.5" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.6 Search vendor "Wireshark" for product "Wireshark" and version "1.0.6" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.7 Search vendor "Wireshark" for product "Wireshark" and version "1.0.7" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.8 Search vendor "Wireshark" for product "Wireshark" and version "1.0.8" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.0.9 Search vendor "Wireshark" for product "Wireshark" and version "1.0.9" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.2 Search vendor "Wireshark" for product "Wireshark" and version "1.2" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.2.0 Search vendor "Wireshark" for product "Wireshark" and version "1.2.0" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.2.1 Search vendor "Wireshark" for product "Wireshark" and version "1.2.1" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.2.2 Search vendor "Wireshark" for product "Wireshark" and version "1.2.2" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.2.3 Search vendor "Wireshark" for product "Wireshark" and version "1.2.3" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.2.4 Search vendor "Wireshark" for product "Wireshark" and version "1.2.4" | - |
Affected
|