← volver
CVE-2011-1140

CVE-2011-1140

EPSS 13.1%
Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://anonsvn.wireshark.org/viewvc?view=rev&revision=36029http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.htmlhttps://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5717http://secunia.com/advisories/43759http://secunia.com/advisories/43795http://secunia.com/advisories/43821http://secunia.com/advisories/44169https://hermes.opensuse.org/messages/8086844https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14715http://www.debian.org/security/2011/dsa-2201