oval:org.mitre.oval:def:16447
| Definition Id: oval:org.mitre.oval:def:16447 | |||
| Oval ID: | oval:org.mitre.oval:def:16447 | ||
| Title: | The dissect_server_info function in epan/dissectors/packet-ms-mms.c in the MS-MMS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not properly manage string lengths, which allows remote attackers to cause a denial of service (application crash) via a malformed packet that (1) triggers an integer overflow or (2) has embedded '\0' characters in a string | ||
| Description: | The dissect_server_info function in epan/dissectors/packet-ms-mms.c in the MS-MMS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not properly manage string lengths, which allows remote attackers to cause a denial of service (application crash) via a malformed packet that (1) triggers an integer overflow or (2) has embedded '\0' characters in a string. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2013-2478 | Version: | 4 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012 | Product(s): | Wireshark |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:6589 | |||
| Oval ID: | oval:org.mitre.oval:def:6589 | ||
| Title: | Wireshark is installed on the system. | ||
| Description: | Wireshark is installed on the system. | ||
| Family: | windows | Class: | inventory |
| Reference(s): | cpe:/a:wireshark:wireshark | Version: | 10 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012 | Product(s): | Wireshark |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:16447 | |||
