CVE-2011-1140

Wireshark: Multiple stack consumption vulnerabilities caused DoS via crafted SMB or CLDAP packet

Severity Score

4.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.

Múltiples vulnerabilidades de agotamiento de pila en las funciones dissect_ms_compressed_string y dissect_mscldap_string de Wireshark 1.0.x, 1.2.0 hasta la versión 1.2.14, y 1.4.0 hasta la 1.4.3. Permiten a atacantes remotos provocar una denegación de servicio (recursión infinita) a través de un paquete modificado (1) SMB o (2) Connection-less LDAP (CLDAP).

*Credits: N/A

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

Attack Vector

Adjacent

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2011-03-02 CVE Reserved
2011-03-03 CVE Published
2023-10-21 EPSS Updated
2024-08-06 CVE Updated
2024-08-06 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-399: Resource Management Errors

CAPEC

References (27)

URL	Tag	Source
http://secunia.com/advisories/43759	Third Party Advisory
http://secunia.com/advisories/43795	Third Party Advisory
http://secunia.com/advisories/43821	Third Party Advisory
http://secunia.com/advisories/44169	Third Party Advisory
http://www.kb.cert.org/vuls/id/215900	Third Party Advisory
http://www.securitytracker.com/id?1025148	Vdb Entry
http://www.vupen.com/english/advisories/2011/0622	Vdb Entry
http://www.vupen.com/english/advisories/2011/0626	Vdb Entry
http://www.vupen.com/english/advisories/2011/0719	Vdb Entry
http://www.vupen.com/english/advisories/2011/0747	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14715	Signature

URL	Date	SRC
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5717	2024-08-06

URL	Date	SRC
http://anonsvn.wireshark.org/viewvc?view=rev&revision=36029	2017-09-19
http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html	2017-09-19
http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html	2017-09-19

URL	Date	SRC
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.html	2017-09-19
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.html	2017-09-19
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.html	2017-09-19
http://www.debian.org/security/2011/dsa-2201	2017-09-19
http://www.mandriva.com/security/advisories?name=MDVSA-2011:044	2017-09-19
http://www.redhat.com/support/errata/RHSA-2011-0369.html	2017-09-19
http://www.redhat.com/support/errata/RHSA-2011-0370.html	2017-09-19
http://www.wireshark.org/security/wnpa-sec-2011-03.html	2017-09-19
http://www.wireshark.org/security/wnpa-sec-2011-04.html	2017-09-19
https://hermes.opensuse.org/messages/8086844	2017-09-19
https://access.redhat.com/security/cve/CVE-2011-1140	2011-03-21
https://bugzilla.redhat.com/show_bug.cgi?id=681754	2011-03-21

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0 Search vendor "Wireshark" for product "Wireshark" and version "1.0"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.0 Search vendor "Wireshark" for product "Wireshark" and version "1.0.0"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.1 Search vendor "Wireshark" for product "Wireshark" and version "1.0.1"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.2 Search vendor "Wireshark" for product "Wireshark" and version "1.0.2"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.3 Search vendor "Wireshark" for product "Wireshark" and version "1.0.3"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.4 Search vendor "Wireshark" for product "Wireshark" and version "1.0.4"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.5 Search vendor "Wireshark" for product "Wireshark" and version "1.0.5"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.6 Search vendor "Wireshark" for product "Wireshark" and version "1.0.6"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.7 Search vendor "Wireshark" for product "Wireshark" and version "1.0.7"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.8 Search vendor "Wireshark" for product "Wireshark" and version "1.0.8"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.9 Search vendor "Wireshark" for product "Wireshark" and version "1.0.9"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.10 Search vendor "Wireshark" for product "Wireshark" and version "1.0.10"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.11 Search vendor "Wireshark" for product "Wireshark" and version "1.0.11"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.12 Search vendor "Wireshark" for product "Wireshark" and version "1.0.12"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.13 Search vendor "Wireshark" for product "Wireshark" and version "1.0.13"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.14 Search vendor "Wireshark" for product "Wireshark" and version "1.0.14"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.15 Search vendor "Wireshark" for product "Wireshark" and version "1.0.15"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.0.16 Search vendor "Wireshark" for product "Wireshark" and version "1.0.16"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.0 Search vendor "Wireshark" for product "Wireshark" and version "1.2.0"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.1 Search vendor "Wireshark" for product "Wireshark" and version "1.2.1"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.2 Search vendor "Wireshark" for product "Wireshark" and version "1.2.2"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.3 Search vendor "Wireshark" for product "Wireshark" and version "1.2.3"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.4 Search vendor "Wireshark" for product "Wireshark" and version "1.2.4"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.5 Search vendor "Wireshark" for product "Wireshark" and version "1.2.5"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.6 Search vendor "Wireshark" for product "Wireshark" and version "1.2.6"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.7 Search vendor "Wireshark" for product "Wireshark" and version "1.2.7"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.8 Search vendor "Wireshark" for product "Wireshark" and version "1.2.8"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.9 Search vendor "Wireshark" for product "Wireshark" and version "1.2.9"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.10 Search vendor "Wireshark" for product "Wireshark" and version "1.2.10"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.11 Search vendor "Wireshark" for product "Wireshark" and version "1.2.11"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.12 Search vendor "Wireshark" for product "Wireshark" and version "1.2.12"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.13 Search vendor "Wireshark" for product "Wireshark" and version "1.2.13"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.2.14 Search vendor "Wireshark" for product "Wireshark" and version "1.2.14"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.4.0 Search vendor "Wireshark" for product "Wireshark" and version "1.4.0"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.4.1 Search vendor "Wireshark" for product "Wireshark" and version "1.4.1"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.4.2 Search vendor "Wireshark" for product "Wireshark" and version "1.4.2"		-		Affected
Wireshark Search vendor "Wireshark"		Wireshark Search vendor "Wireshark" for product "Wireshark"				1.4.3 Search vendor "Wireshark" for product "Wireshark" and version "1.4.3"		-		Affected