CVE-2012-0043 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Wireshark

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer8 documents6 sources

Severity

5.8MEDIUMNVD

EPSS

1.7%

top 17.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedApr 11

Latest updateMay 4

Description

Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a series of fragmented RLC packets.

CVSS vector

AV:A/AC:L/C:P/I:P/A:PExploitability: 6.5 | Impact: 6.4

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 1.6.5-1 (bookworm)

▶Debianwireshark/wireshark< 1.6.5-1+3

▶NVDwireshark/wireshark16 versions+15

Patches

Patch: anonsvn.wireshark.org ↗Patch: bugs.wireshark.org ↗Patch: anonsvn.wireshark.org ↗

🔴Vulnerability Details

GHSA

GHSA-4v5g-q8f8-h8fg: Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc↗2022-05-04

▶

OSV

CVE-2012-0043: Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc↗2012-04-11

▶

📋Vendor Advisories

Red Hat

wireshark: RLC dissector buffer overflow (wnpa-sec-2012-03)↗2012-01-10

▶

Debian

CVE-2012-0043: wireshark - Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc...↗2012

▶

💬Community

Bugzilla

CVE-2012-3387 CVE-2012-3388 CVE-2012-3389 CVE-2012-3390 CVE-2012-3391 CVE-2012-3392 CVE-2012-3393 CVE-2012-3394 CVE-2012-3395 CVE-2012-3396 CVE-2012-3397 CVE-2012-3398 moodle: upstream 2.3.1, 2.2.4, 2↗2012-07-20

▶

Bugzilla

CVE-2012-0041 CVE-2012-0042 CVE-2012-0043 CVE-2012-0066 CVE-2012-0067 CVE-2012-0068 wireshark various flaws [fedora-all]↗2012-01-13

▶

Bugzilla

CVE-2012-0043 wireshark: RLC dissector buffer overflow (wnpa-sec-2012-03)↗2012-01-12

▶