CVE-2013-4933 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Wireshark
CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents6 sources
Severity
5.0MEDIUMNVD
EPSS
1.5%
top 18.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJul 30
Latest updateMay 17
Description
The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet-trace file.
CVSS vector
AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9
Affected Packages3 packages
Patches
🔴Vulnerability Details
2📋Vendor Advisories
3💬Community
4Bugzilla▶
CVE-2013-4934 wireshark: DoS (application crash) in the Netmon file parser (wnpa-sec-2013-51) (A different flaw than CVE-2013-4933)↗2013-07-30
Bugzilla▶
CVE-2013-4933 wireshark: DoS (application crash) in the Netmon file parser (wnpa-sec-2013-51)↗2013-07-30
Bugzilla▶
CVE-2013-4920 CVE-2013-4934 CVE-2013-4928 CVE-2013-4929 CVE-2013-4931 CVE-2013-4930 CVE-2013-4933 CVE-2013-4932 CVE-2013-4935 CVE-2013-4927 wireshark: various flaws [fedora-18]↗2013-07-30