Vulnerability CVE-2008-1072: Information

Description

The TFTP dissector in Wireshark (formerly Ethereal) 0.6.0 through 0.99.7, when running on Ubuntu 7.10, allows remote attackers to cause a denial of service (crash or memory consumption) via a malformed packet, possibly related to a Cairo library bug.

Severity: MEDIUM (4.7)

URL: https://nvd.nist.gov/vuln/detail/CVE-2008-1072

Published: Feb. 29, 2008

Modified: Oct. 11, 2018

References to Advisories, Solutions, and Tools

Hyperlink	Resource
http://www.wireshark.org/security/wnpa-sec-2008-01.html
28025
1019515
29156	Vendor Advisory
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0092
https://issues.rpath.com/browse/RPL-2296
MDVSA-2008:057
SUSE-SR:2008:005
29188
29223
29242
GLSA-200803-32
29511
FEDORA-2008-2941
FEDORA-2008-3040
29736
32091
RHSA-2008:0890
http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm
ADV-2008-2773
ADV-2008-0704
oval:org.mitre.oval:def:10188
20080229 rPSA-2008-0092-1 tshark wireshark

Affected configurations:
1. Configuration 1
  cpe:2.3:a:wireshark:wireshark:0.9.10:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.10.4:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.8.16:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.10:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.1:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.10.13:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.7.9:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
  cpe:2.3:a:wireshark:wireshark:0.6:*:*:*:*:*:*:*

Version: v24.5.3

Vulnerability CVE-2008-1072: Information

Description

References to Advisories, Solutions, and Tools

Configuration 1