CVE-2009-2563

HIGH

Description

Unspecified vulnerability in the Infiniband dissector in Wireshark 1.0.6 through 1.2.0, when running on unspecified platforms, allows remote attackers to cause a denial of service (crash) via unknown vectors.

References

http://secunia.com/advisories/35884

http://www.mandriva.com/security/advisories?name=MDVSA-2009:194

http://www.mandriva.com/security/advisories?name=MDVSA-2010:031

http://www.openwall.com/lists/oss-security/2009/09/17/15

http://www.openwall.com/lists/oss-security/2009/09/18/2

http://www.securityfocus.com/bid/35748

http://www.vupen.com/english/advisories/2009/1970

http://www.wireshark.org/docs/relnotes/wireshark-1.0.9.html

http://www.wireshark.org/security/wnpa-sec-2009-04.html

http://www.wireshark.org/security/wnpa-sec-2009-05.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11210

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6321

Details

Source: MITRE

Published: 2009-07-21

Updated: 2017-09-19

Type: NVD-CWE-noinfo

Risk Information

CVSS v2.0

Base Score: 7.1

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 8.6

Severity: HIGH

Tenable Plugins

View all (16 total)

ID	Name	Product	Family	Severity
68032	Oracle Linux 3 / 4 / 5 : wireshark (ELSA-2010-0360)	Nessus	Oracle Linux Local Security Checks	high
60785	Scientific Linux Security Update : wireshark on SL3.x, SL4.x, SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
51635	SuSE 11 Security Update : wireshark (SAT Patch Number 2082)	Nessus	SuSE Local Security Checks	high
46301	RHEL 3 / 4 / 5 : wireshark (RHSA-2010:0360)	Nessus	Red Hat Local Security Checks	high
45594	CentOS 3 / 4 / 5 : wireshark (CESA-2010:0360)	Nessus	CentOS Local Security Checks	high
45077	SuSE 11 Security Update : wireshark (SAT Patch Number 2082)	Nessus	SuSE Local Security Checks	high
45076	openSUSE Security Update : wireshark (wireshark-1900)	Nessus	SuSE Local Security Checks	high
45074	openSUSE Security Update : wireshark (wireshark-1900)	Nessus	SuSE Local Security Checks	high
45072	openSUSE Security Update : wireshark (wireshark-1900)	Nessus	SuSE Local Security Checks	high
44385	Mandriva Linux Security Advisory : wireshark (MDVSA-2010:031)	Nessus	Mandriva Local Security Checks	high
43015	Fedora 10 : wireshark-1.2.1-1.fc10 (2009-7998)	Nessus	Fedora Local Security Checks	high
42387	Fedora 11 : wireshark-1.2.2-1.fc11 (2009-9837)	Nessus	Fedora Local Security Checks	high
41029	Wireshark / Ethereal 0.9.2 to 1.0.9 Multiple Vulnerabilities	Nessus	Windows	medium
40963	GLSA-200909-16 : Wireshark: Denial of Service	Nessus	Gentoo Local Security Checks	high
40498	Mandriva Linux Security Advisory : wireshark (MDVSA-2009:194)	Nessus	Mandriva Local Security Checks	high
40335	Wireshark / Ethereal 0.9.2 to 1.2.0 Multiple Vulnerabilities	Nessus	Windows	high