CVE-2007-0459Wireshark vulnerability

11 documents6 sources
Severity
5.0MEDIUMNVD
EPSS
3.2%
top 13.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
WiresharkDebian Wireshark
Timeline
PublishedFeb 2
Latest updateMay 3

Description

packet-tcp.c in the TCP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.4 allows remote attackers to cause a denial of service (application crash or hang) via fragmented HTTP packets.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

debiandebian/wireshark< wireshark 0.99.4-5 (bookworm)
Debianwireshark/wireshark< 0.99.4-5+3
NVDwireshark/wireshark0.99.2, 0.99.3, 0.99.4+2

Patches

Patch: secunia.comPatch: www.securityfocus.comPatch: www.wireshark.org

🔴Vulnerability Details

2
GHSA
GHSA-qvq9-f42r-93qf: packet-tcp2022-05-03
OSV
CVE-2007-0459: packet-tcp2007-02-02

📋Vendor Advisories

5
Red Hat
Multiple Wireshark issues (CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)2007-02-01
Red Hat
Multiple Wireshark issues (CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)2007-02-01
Red Hat
Multiple Wireshark issues (CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)2007-02-01
Red Hat
Multiple Wireshark issues (CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)2007-02-01
Debian
CVE-2007-0459: wireshark - packet-tcp.c in the TCP dissector in Wireshark (formerly Ethereal) 0.99.2 throug...2007

💬Community

3
Bugzilla
CVE-2007-0456 Multiple Wireshark issues (CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)2007-02-02
Bugzilla
CVE-2007-0456 Multiple Wireshark issues (CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)2007-01-31
Bugzilla
CVE-2007-0456 Multiple Wireshark issues (CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)2007-01-31