CVE-2012-3548
Gentoo Linux Security Advisory 201308-05
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
The dissect_drda function in epan/dissectors/packet-drda.c in Wireshark 1.6.x through 1.6.10 and 1.8.x through 1.8.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a small value for a certain length field in a capture file.
La función dissect_drda en epan/dissectors/packet-drda.c en Wireshark v1.6.x hasta v1.6.10 y v1.8.x hasta v1.8.2 permite a atacantes remotos causar una denegación de servicio (ciclo infinito y consumo de memoria) a través de un valor pequeño para una cierta longitud de campo en un fichero de captura.
Multiple vulnerabilities have been found in Wireshark, allowing remote attackers to execute arbitrary code or cause Denial of Service. Versions less than 1.10.1 are affected.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2012-06-14 CVE Reserved
- 2012-08-30 CVE Published
- 2024-08-06 CVE Updated
- 2024-08-06 First Exploit
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-399: Resource Management Errors
CAPEC
References (7)
URL | Tag | Source |
---|---|---|
http://openwall.com/lists/oss-security/2012/08/29/4 | Mailing List | |
http://secunia.com/advisories/54425 | Third Party Advisory | |
http://www.securitytracker.com/id?1027464 | Vdb Entry | |
https://bugzilla.redhat.com/show_bug.cgi?id=849926 | X_refsource_confirm | |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15646 | Signature |
URL | Date | SRC |
---|---|---|
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7666 | 2024-08-06 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www.gentoo.org/security/en/glsa/glsa-201308-05.xml | 2017-09-19 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.8.0 Search vendor "Wireshark" for product "Wireshark" and version "1.8.0" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.8.1 Search vendor "Wireshark" for product "Wireshark" and version "1.8.1" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.8.2 Search vendor "Wireshark" for product "Wireshark" and version "1.8.2" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.0 Search vendor "Wireshark" for product "Wireshark" and version "1.6.0" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.1 Search vendor "Wireshark" for product "Wireshark" and version "1.6.1" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.2 Search vendor "Wireshark" for product "Wireshark" and version "1.6.2" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.3 Search vendor "Wireshark" for product "Wireshark" and version "1.6.3" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.4 Search vendor "Wireshark" for product "Wireshark" and version "1.6.4" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.5 Search vendor "Wireshark" for product "Wireshark" and version "1.6.5" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.6 Search vendor "Wireshark" for product "Wireshark" and version "1.6.6" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.7 Search vendor "Wireshark" for product "Wireshark" and version "1.6.7" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.8 Search vendor "Wireshark" for product "Wireshark" and version "1.6.8" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.9 Search vendor "Wireshark" for product "Wireshark" and version "1.6.9" | - |
Affected
| ||||||
Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.6.10 Search vendor "Wireshark" for product "Wireshark" and version "1.6.10" | - |
Affected
|