CVE-2017-13766 — Out-of-bounds Write in Wireshark

CWE-787 — Out-of-bounds Write7 documents6 sources

Severity

7.5HIGHNVD

EPSS

0.4%

top 36.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedAug 30

Latest updateMay 17

Description

In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. This was addressed in plugins/profinet/packet-dcerpc-pn-io.c by adding string validation.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 2.4.1-1 (bookworm)

▶Debianwireshark/wireshark< 2.4.1-1+3

▶NVDwireshark/wireshark23 versions+22

Patches

Patch: bugs.wireshark.org ↗Patch: bugs.wireshark.org ↗

🔴Vulnerability Details

GHSA

GHSA-8v46-667r-cgvm: In Wireshark 2↗2022-05-17

▶

OSV

CVE-2017-13766: In Wireshark 2↗2017-08-30

▶

📋Vendor Advisories

Red Hat

wireshark: Profinet I/O buffer overrun (wnpa-sec-2017-39)↗2017-08-29

▶

Debian

CVE-2017-13766: wireshark - In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash wi...↗2017

▶

💬Community

Bugzilla

CVE-2017-13765 CVE-2017-13766 CVE-2017-13767 wireshark: various flaws [fedora-all]↗2017-08-30

▶

Bugzilla

CVE-2017-13766 wireshark: Profinet I/O buffer overrun (wnpa-sec-2017-39)↗2017-08-30

▶