CVE-2014-6422
wireshark: RTP dissector crash (wnpa-sec-2014-12)
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The SDP dissector in Wireshark 1.10.x before 1.10.10 creates duplicate hashtables for a media channel, which allows remote attackers to cause a denial of service (application crash) via a crafted packet to the RTP dissector.
El diseccionador SDP en Wireshark 1.10.x anterior a 1.10.10 crea tablas hash duplicadas para un canal de medios, lo que permite a un atacante causar una denegación de servicio (caída de la aplicación) a través de un paquete manipulado hacia el diseccionador RTP.
Wireshark is a network protocol analyzer. It is used to capture and browse the traffic running on a computer network. Multiple flaws were found in Wireshark. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark. Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2014-09-16 CVE Reserved
- 2014-09-20 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-416: Use After Free
CAPEC
References (16)
| URL | Tag | Source |
|---|---|---|
| http://linux.oracle.com/errata/ELSA-2014-1676 | X_refsource_confirm | |
| http://linux.oracle.com/errata/ELSA-2014-1677 | X_refsource_confirm | |
| http://secunia.com/advisories/60280 | Third Party Advisory | |
| http://secunia.com/advisories/60578 | Third Party Advisory | |
| http://secunia.com/advisories/61929 | Third Party Advisory | |
| http://secunia.com/advisories/61933 | Third Party Advisory | |
| http://www.wireshark.org/security/wnpa-sec-2014-12.html | X_refsource_confirm | |
| https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9920 | X_refsource_confirm | |
| https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=04c05a21e34cec326f1aff2f5f8a6e74e1ced984 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00033.html | 2023-11-07 | |
| http://lists.opensuse.org/opensuse-updates/2014-09/msg00058.html | 2023-11-07 | |
| http://rhn.redhat.com/errata/RHSA-2014-1676.html | 2023-11-07 | |
| http://rhn.redhat.com/errata/RHSA-2014-1677.html | 2023-11-07 | |
| http://www.debian.org/security/2014/dsa-3049 | 2023-11-07 | |
| https://access.redhat.com/security/cve/CVE-2014-6422 | 2014-10-21 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1142611 | 2014-10-21 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.0 Search vendor "Wireshark" for product "Wireshark" and version "1.10.0" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.1 Search vendor "Wireshark" for product "Wireshark" and version "1.10.1" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.2 Search vendor "Wireshark" for product "Wireshark" and version "1.10.2" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.3 Search vendor "Wireshark" for product "Wireshark" and version "1.10.3" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.4 Search vendor "Wireshark" for product "Wireshark" and version "1.10.4" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.5 Search vendor "Wireshark" for product "Wireshark" and version "1.10.5" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.6 Search vendor "Wireshark" for product "Wireshark" and version "1.10.6" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.7 Search vendor "Wireshark" for product "Wireshark" and version "1.10.7" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.8 Search vendor "Wireshark" for product "Wireshark" and version "1.10.8" | - |
Affected
| ||||||
| Wireshark Search vendor "Wireshark" | Wireshark Search vendor "Wireshark" for product "Wireshark" | 1.10.9 Search vendor "Wireshark" for product "Wireshark" and version "1.10.9" | - |
Affected
| ||||||