CVE-2015-6243
published 2015-08-24CVE-2015-6243: The dissector-table implementation in epan/packet.c in Wireshark 1.12.x before 1.12.7 mishandles table searches for empty strings, which allows remote…
medium4.3CVSS 3.1
AVNACMAuNCNINAP
The dissector-table implementation in epan/packet.c in Wireshark 1.12.x before 1.12.7 mishandles table searches for empty strings, which allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to the (1) dissector_get_string_handle and (2) dissector_get_default_string_handle functions.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | wireshark | < wireshark 1.12.7+g7fc8978-1 (bookworm) | wireshark 1.12.7+g7fc8978-1 (bookworm) |
| oracle | linux | — | — |
| oracle | solaris | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | — | — |
| wireshark | wireshark | >= 0 < 1.12.7+g7fc8978-1 | 1.12.7+g7fc8978-1 |
| wireshark | wireshark | >= 0 < 1.12.7+g7fc8978-1 | 1.12.7+g7fc8978-1 |
| wireshark | wireshark | >= 0 < 1.12.7+g7fc8978-1 | 1.12.7+g7fc8978-1 |
| wireshark | wireshark | >= 0 < 1.12.7+g7fc8978-1 | 1.12.7+g7fc8978-1 |
CVSS provenance
nvd4.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM