CVE-2008-3933 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-3933
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-3933

Description: Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncompress function.

CVE Status: Candidate

References: ST 1020819 SAID Secunia Advisory: SA32028 Secunia Advisory: SA31886 Secunia Advisory: SA31864 Secunia Advisory: SA32091 Secunia Advisory: SA32944 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0890.html MISC MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:199 GENTOO http://security.gentoo.org/glsa/glsa-200809-17.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1673 CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0278 http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm http://www.wireshark.org/security/wnpa-sec-2008-05.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/496487/100/0/threaded

Return to the previous page.