CVE-2013-5717 in Wiresharkinfo

Summary

The Bluetooth HCI ACL dissector in Wireshark 1.10.x before 1.10.2 does not properly maintain a certain free list, which allows remote attackers to cause a denial of service (application crash) via a crafted packet that is not properly handled by the wmem_block_alloc function in epan/wmem/wmem_allocator_block.c.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

09/11/2013

Disclosure

09/16/2013

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
10281	Wireshark Netmon File input validation	20	Not defined	Official fix	CVE-2013-5717
10280	Wireshark Bluetooth HCI ACL dissector input validation	20	Not defined	Official fix	CVE-2013-5717

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!