CVE-2009-3241
published 2009-09-18CVE-2009-3241: Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial…
PriorityP340high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
9.70%
94.9th percentile
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | wireshark | < wireshark 1.2.2-1 (bookworm) | wireshark 1.2.2-1 (bookworm) |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | >= 0 < 1.2.2-1 | 1.2.2-1 |
| wireshark | wireshark | >= 0 < 1.2.2-1 | 1.2.2-1 |
| wireshark | wireshark | >= 0 < 1.2.2-1 | 1.2.2-1 |
| wireshark | wireshark | >= 0 < 1.2.2-1 | 1.2.2-1 |
CVSS provenance
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.8HIGH
vendor_debian7.8LOW
vendor_redhat7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-grh9-678v-4762: Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0
ghsa_unreviewed·2022-05-02
CVE-2009-3241 [HIGH] GHSA-grh9-678v-4762: Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
OSV
CVE-2009-3241: Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0
osv·2009-09-18·CVSS 7.8
CVE-2009-3241 [HIGH] CVE-2009-3241: Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
Red Hat
Wireshark: DoS (excessive CPU use) in OPCUA dissector
vendor_redhat·2009-09-06·CVSS 7.8
CVE-2009-3241 [HIGH] Wireshark: DoS (excessive CPU use) in OPCUA dissector
Wireshark: DoS (excessive CPU use) in OPCUA dissector
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
Statement: Not vulnerable. This issue did not affect the versions of wireshark as shipped with Red Hat Enterprise Linux 3, 4, or 5.
Debian
CVE-2009-3241: wireshark - Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 th...
vendor_debian·2009·CVSS 7.8
CVE-2009-3241 [HIGH] CVE-2009-3241: wireshark - Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 th...
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
Scope: local
bookworm: resolved (fixed in 1.2.2-1)
bullseye: resolved (fixed in 1.2.2-1)
forky: resolved (fixed in 1.2.2-1)
sid: resolved (fixed in 1.2.2-1)
trixie: resolved (fixed in 1.2.2-1)
No detection rules found.
http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.htmlhttp://secunia.com/advisories/36754http://secunia.com/advisories/37409http://secunia.com/advisories/37477http://www.debian.org/security/2009/dsa-1942http://www.securityfocus.com/bid/36408http://www.wireshark.org/docs/relnotes/wireshark-1.0.9.htmlhttp://www.wireshark.org/docs/relnotes/wireshark-1.2.2.htmlhttp://www.wireshark.org/security/wnpa-sec-2009-05.htmlhttp://www.wireshark.org/security/wnpa-sec-2009-06.htmlhttps://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3986https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6162http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.htmlhttp://secunia.com/advisories/36754http://secunia.com/advisories/37409http://secunia.com/advisories/37477http://www.debian.org/security/2009/dsa-1942http://www.securityfocus.com/bid/36408http://www.wireshark.org/docs/relnotes/wireshark-1.0.9.htmlhttp://www.wireshark.org/docs/relnotes/wireshark-1.2.2.htmlhttp://www.wireshark.org/security/wnpa-sec-2009-05.htmlhttp://www.wireshark.org/security/wnpa-sec-2009-06.htmlhttps://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3986https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6162
2009-09-18
Published