CVE-2012-4292 in Wiresharkinformação

Sumário

de MITRE

The dissect_stun_message function in epan/dissectors/packet-stun.c in the STUN dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly interact with key-destruction behavior in a certain tree library, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

14/08/2012

Divulgação

16/08/2012

Moderação

aceite

Entrada

VDB-5991

CPE

pronto

CWE

CWE-20 (confirmado)

CVSS

3.3 (NVD)

EPSS

0.01913

KEV

não

Atividades

muito baixo

Sector

Police, Hostingprovider, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4292
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4292
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4292/

◂ Voltar Visão Geral Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!