CVE-2016-2521 — Wireshark vulnerability

CWE-2646 documents6 sources

Severity

7.8HIGHNVD

EPSS

0.0%

top 91.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedFeb 28

Latest updateMay 17

Description

Untrusted search path vulnerability in the WiresharkApplication class in ui/qt/wireshark_application.cpp in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 on Windows allows local users to gain privileges via a Trojan horse riched20.dll.dll file in the current working directory, related to use of QLibrary.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶Ubuntuwireshark/wireshark< 2.6.3-1~ubuntu14.04.1+2

▶debiandebian/wireshark

▶NVDwireshark/wireshark12 versions+11

🔴Vulnerability Details

GHSA

GHSA-c44j-w78v-5jr4: Untrusted search path vulnerability in the WiresharkApplication class in ui/qt/wireshark_application↗2022-05-17

▶

OSV

CVE-2016-2521: Untrusted search path vulnerability in the WiresharkApplication class in ui/qt/wireshark_application↗2016-02-28

▶

📋Vendor Advisories

Red Hat

wireshark: DLL hijacking vulnerability (wnpa-sec-2016-01)↗2016-02-26

▶

Debian

CVE-2016-2521: wireshark - Untrusted search path vulnerability in the WiresharkApplication class in ui/qt/w...↗2016

▶

💬Community

Bugzilla

CVE-2016-2521 wireshark: DLL hijacking vulnerability (wnpa-sec-2016-01)↗2016-02-29

▶