Vulnerability CVE-2007-6451: Information

Description

Unspecified vulnerability in the CIP dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger allocation of large amounts of memory.

Severity: MEDIUM (4.3)

URL: https://nvd.nist.gov/vuln/detail/CVE-2007-6451

Published: Dec. 20, 2007

Modified: Oct. 16, 2018

Error type identifier: CWE-399

References to Advisories, Solutions, and Tools

Hyperlink	Resource
http://www.wireshark.org/security/wnpa-sec-2007-03.html
http://bugs.gentoo.org/show_bug.cgi?id=199958
DSA-1446
GLSA-200712-23
28288	Vendor Advisory
28315	Vendor Advisory
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004
MDVSA-2008:001
27777
28304
https://issues.rpath.com/browse/RPL-1975
MDVSA-2008:1
RHSA-2008:0058
RHSA-2008:0059
27071
28325
28564
28583
SUSE-SR:2008:004
29048
wireshark-cip-dissector-dos(39187)
oval:org.mitre.oval:def:9685
20080103 rPSA-2008-0004-1 tshark wireshark

Affected configurations:
1. Configuration 1
  cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.9.14:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.0:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.9.8:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.1:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99:*:*:*:*:*:*:*

Version: v24.5.3

Vulnerability CVE-2007-6451: Information

Description

References to Advisories, Solutions, and Tools

Configuration 1