CVE-2011-1140
published 2011-03-03CVE-2011-1140: Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14…
PriorityP429medium4.3CVSS 2.0
AVNACMAuNCNINAP
EXPLOIT
EPSS
13.06%
95.9th percentile
Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.
Affected
42 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | wireshark | < wireshark 1.4.4-1 (bookworm) | wireshark 1.4.4-1 (bookworm) |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_debian4.3LOW
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rjw2-p6xh-g64w: Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1
ghsa_unreviewed·2022-05-17
CVE-2011-1140 [MEDIUM] GHSA-rjw2-p6xh-g64w: Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1
Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.
OSV
CVE-2011-1140: Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1
osv·2011-03-03·CVSS 4.3
CVE-2011-1140 [MEDIUM] CVE-2011-1140: Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1
Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.
Red Hat
Wireshark: Multiple stack consumption vulnerabilities caused DoS via crafted SMB or CLDAP packet
vendor_redhat·2011-03-01·CVSS 4.3
CVE-2011-1140 [MEDIUM] Wireshark: Multiple stack consumption vulnerabilities caused DoS via crafted SMB or CLDAP packet
Wireshark: Multiple stack consumption vulnerabilities caused DoS via crafted SMB or CLDAP packet
Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.
Debian
CVE-2011-1140: wireshark - Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string a...
vendor_debian·2011·CVSS 4.3
CVE-2011-1140 [MEDIUM] CVE-2011-1140: wireshark - Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string a...
Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.
Scope: local
bookworm: resolved (fixed in 1.4.4-1)
bullseye: resolved (fixed in 1.4.4-1)
forky: resolved (fixed in 1.4.4-1)
sid: resolved (fixed in 1.4.4-1)
trixie: resolved (fixed in 1.4.4-1)
No detection rules found.
Bugzilla
CVE-2011-1140 Wireshark: Multiple stack consumption vulnerabilities caused DoS via crafted SMB or CLDAP packet
bugzilla·2011-03-03·CVSS 4.3
CVE-2011-1140 [MEDIUM] CVE-2011-1140 Wireshark: Multiple stack consumption vulnerabilities caused DoS via crafted SMB or CLDAP packet
CVE-2011-1140 Wireshark: Multiple stack consumption vulnerabilities caused DoS via crafted SMB or CLDAP packet
Common Vulnerabilities and Exposures assigned an identifier CVE-2011-1140 to
the following vulnerability:
Name: CVE-2011-1140
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1140
Assigned: 20110302
Reference: CONFIRM:http://anonsvn.wireshark.org/viewvc?view=rev&revision=36029
Reference: CONFIRM:http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html
Reference: CONFIRM:http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html
Reference: CONFIRM:http://www.wireshark.org/security/wnpa-sec-2011-03.html
Reference: CONFIRM:http://www.wireshark.org/security/wnpa-sec-2011-04.html
Reference: CONFIRM:https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5717
Multiple sta
Bugzilla
CVE-2011-0538 CVE-2010-3445 CVE-2011-1143 CVE-2011-1140 CVE-2011-1138 CVE-2011-1139 wireshark various flaws [fedora-all]
bugzilla·2011-02-11·CVSS 5.0
CVE-2011-0538 [MEDIUM] CVE-2011-0538 CVE-2010-3445 CVE-2011-1143 CVE-2011-1140 CVE-2011-1138 CVE-2011-1139 wireshark various flaws [fedora-all]
CVE-2011-0538 CVE-2010-3445 CVE-2011-1143 CVE-2011-1140 CVE-2011-1138 CVE-2011-1139 wireshark various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=67
http://anonsvn.wireshark.org/viewvc?view=rev&revision=36029http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.htmlhttp://secunia.com/advisories/43759http://secunia.com/advisories/43795http://secunia.com/advisories/43821http://secunia.com/advisories/44169http://www.debian.org/security/2011/dsa-2201http://www.kb.cert.org/vuls/id/215900http://www.mandriva.com/security/advisories?name=MDVSA-2011:044http://www.redhat.com/support/errata/RHSA-2011-0369.htmlhttp://www.redhat.com/support/errata/RHSA-2011-0370.htmlhttp://www.securitytracker.com/id?1025148http://www.vupen.com/english/advisories/2011/0622http://www.vupen.com/english/advisories/2011/0626http://www.vupen.com/english/advisories/2011/0719http://www.vupen.com/english/advisories/2011/0747http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.htmlhttp://www.wireshark.org/docs/relnotes/wireshark-1.4.4.htmlhttp://www.wireshark.org/security/wnpa-sec-2011-03.htmlhttp://www.wireshark.org/security/wnpa-sec-2011-04.htmlhttps://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5717https://hermes.opensuse.org/messages/8086844https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14715http://anonsvn.wireshark.org/viewvc?view=rev&revision=36029http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.htmlhttp://secunia.com/advisories/43759http://secunia.com/advisories/43795http://secunia.com/advisories/43821http://secunia.com/advisories/44169http://www.debian.org/security/2011/dsa-2201http://www.kb.cert.org/vuls/id/215900http://www.mandriva.com/security/advisories?name=MDVSA-2011:044http://www.redhat.com/support/errata/RHSA-2011-0369.htmlhttp://www.redhat.com/support/errata/RHSA-2011-0370.htmlhttp://www.securitytracker.com/id?1025148http://www.vupen.com/english/advisories/2011/0622http://www.vupen.com/english/advisories/2011/0626http://www.vupen.com/english/advisories/2011/0719http://www.vupen.com/english/advisories/2011/0747http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.htmlhttp://www.wireshark.org/docs/relnotes/wireshark-1.4.4.htmlhttp://www.wireshark.org/security/wnpa-sec-2011-03.htmlhttp://www.wireshark.org/security/wnpa-sec-2011-04.htmlhttps://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5717https://hermes.opensuse.org/messages/8086844https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14715
2011-03-03
Published