CVE-2012-1593 : Detail

CVE-2012-1593

1.73%V3
Adjacent Network
2012-04-11
08h00 +00:00
2017-12-28
20h57 +00:00
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

epan/dissectors/packet-ansi_a.c in the ANSI A dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.

CVE Informations

Metrics

Metrics Score Severity CVSS Vector Source
V2 3.3 AV:A/AC:L/Au:N/C:N/I:N/A:P [email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Exploit information

Exploit Database EDB-ID : 18758

Publication date : 2012-04-18 22h00 +00:00
Author : Wireshark
EDB Verified : Yes

source: https://www.securityfocus.com/bid/52735/info Wireshark is prone to a remote denial-of-service vulnerability caused by a NULL-pointer-dereference error. An attacker can exploit this issue to crash the application, resulting in a denial-of-service condition. The following Wireshark versions are vulnerable: 1.4.0 through 1.4.11 1.6.0 through 1.6.5 PoC: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/18758.pcap

Products Mentioned

Configuraton 0

Wireshark>>Wireshark >> Version 1.4.0

Wireshark>>Wireshark >> Version 1.4.1

Wireshark>>Wireshark >> Version 1.4.2

Wireshark>>Wireshark >> Version 1.4.3

Wireshark>>Wireshark >> Version 1.4.4

Wireshark>>Wireshark >> Version 1.4.5

Wireshark>>Wireshark >> Version 1.4.6

Wireshark>>Wireshark >> Version 1.4.7

Wireshark>>Wireshark >> Version 1.4.8

Wireshark>>Wireshark >> Version 1.4.9

Wireshark>>Wireshark >> Version 1.4.10

Wireshark>>Wireshark >> Version 1.4.11

References

http://www.exploit-db.com/exploits/18758
Tags : exploit, x_refsource_EXPLOIT-DB
http://secunia.com/advisories/48986
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.openwall.com/lists/oss-security/2012/03/28/13
Tags : mailing-list, x_refsource_MLIST
http://secunia.com/advisories/48548
Tags : third-party-advisory, x_refsource_SECUNIA
http://www.securitytracker.com/id?1026874
Tags : vdb-entry, x_refsource_SECTRACK