CVE-2012-4292 in Wireshark信息

摘要

由 MITRE

The dissect_stun_message function in epan/dissectors/packet-stun.c in the STUN dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly interact with key-destruction behavior in a certain tree library, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

预定

2012-08-14

披露

2012-08-16

管理

已接受

条目

VDB-5991

CPE

准备好

CWE

CWE-20 (已确认)

CVSS

3.3 (NVD)

EPSS

0.01913

KEV

否

活动

非常低

部门

Telecommunication, Police, ...

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4292
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4292
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4292/

◂ 上一步一览下一步 ▸

Want to know what is going to be exploited?

We predict KEV entries!