Wireshark Netflow Dissector CVE-2014-6424 Denial of Service Vulnerability
BID:69862
Info
Wireshark Netflow Dissector CVE-2014-6424 Denial of Service Vulnerability
| Bugtraq ID: | 69862 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2014-6424 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 16 2014 12:00AM |
| Updated: | Apr 13 2015 10:02PM |
| Credit: | Buildbot Builder. |
| Vulnerable: |
Wireshark Wireshark 1.12 Wireshark Wireshark 1.10.8 Wireshark Wireshark 1.10.7 Wireshark Wireshark 1.10.6 Wireshark Wireshark 1.10.5 Wireshark Wireshark 1.10.4 Wireshark Wireshark 1.10.3 Wireshark Wireshark 1.10.2 Wireshark Wireshark 1.10.1 Wireshark Wireshark 1.10 Wireshark Wireshark 1.10.9 Oracle Enterprise Linux 7 Mandriva Business Server 1 X86 64 Mandriva Business Server 1 Gentoo Linux Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 |
| Not Vulnerable: |
Wireshark Wireshark 1.12.1 Wireshark Wireshark 1.10.10 |
Discussion
Wireshark Netflow Dissector CVE-2014-6424 Denial of Service Vulnerability
Wireshark is prone to a remote denial-of-service vulnerability because it fails to properly handle certain types of packets.
An attacker can leverage this issue to crash the affected application, denying service to legitimate users.
Wireshark 1.12.0, 1.10.0 through 1.10.9 are vulnerable.
Wireshark is prone to a remote denial-of-service vulnerability because it fails to properly handle certain types of packets.
An attacker can leverage this issue to crash the affected application, denying service to legitimate users.
Wireshark 1.12.0, 1.10.0 through 1.10.9 are vulnerable.
References
Wireshark Netflow Dissector CVE-2014-6424 Denial of Service Vulnerability
References:
References:
- Wireshark Homepage (Wireshark)
- wnpa-sec-2014-14 · Netflow dissector crash (wireshark)