CVE-2014-6425 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Wireshark

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-228 — Improper Handling of Syntactically Invalid Structure CWE-125 — Out-of-bounds Read7 documents6 sources

Severity

5.0MEDIUMNVD

EPSS

1.2%

top 21.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedSep 20

Latest updateMay 17

Description

The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups.c in the CUPS dissector in Wireshark 1.12.x before 1.12.1 allow remote attackers to cause a denial of service (buffer over-read and application crash) via a CUPS packet that lacks a trailing '\0' character.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 1.12.1+g01b65bf-1 (bookworm)

▶Debianwireshark/wireshark< 1.12.1+g01b65bf-1+3

▶NVDwireshark/wireshark1.12.0

🔴Vulnerability Details

GHSA

GHSA-75mm-8952-gf7g: The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups↗2022-05-17

▶

OSV

CVE-2014-6425: The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups↗2014-09-20

▶

📋Vendor Advisories

Red Hat

wireshark: CUPS dissector crash (wnpa-sec-2014-15)↗2014-08-07

▶

Debian

CVE-2014-6425: wireshark - The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissecto...↗2014

▶

💬Community

Bugzilla

CVE-2014-6425 wireshark: CUPS dissector crash (wnpa-sec-2014-15) [fedora-all]↗2014-10-01

▶

Bugzilla

CVE-2014-6425 wireshark: CUPS dissector crash (wnpa-sec-2014-15)↗2014-09-17

▶