Уязвимость CVE-2013-4929: Информация

Описание

The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not terminate packet-data processing after finding zero remaining bytes, which allows remote attackers to cause a denial of service (loop) via a crafted packet.

Важность: HIGH (7,8)

Исправленные пакеты

Ссылки на рекомендации, решения и инструменты

1. Подверженные конфигурации:

   1. Конфигурация 1

      cpe:2.3:a:wireshark:wireshark:1.8.6:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:wireshark:wireshark:1.8.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:wireshark:wireshark:1.8.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:wireshark:wireshark:1.8.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:wireshark:wireshark:1.8.7:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:wireshark:wireshark:1.8.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:wireshark:wireshark:1.8.4:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:wireshark:wireshark:1.8.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:wireshark:wireshark:1.8.8:*:*:*:*:*:*:*

      ---

      Конфигурация 2

      cpe:2.3:a:wireshark:wireshark:1.10.0:*:*:*:*:*:*:*

      ---