CVE-2013-2488

high

Description

The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service (application crash) via a large offset value that triggers write access to an invalid memory location.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16672

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=8380

http://www.wireshark.org/security/wnpa-sec-2013-22.html

http://www.wireshark.org/docs/relnotes/wireshark-1.8.6.html

http://www.wireshark.org/docs/relnotes/wireshark-1.6.14.html

http://www.debian.org/security/2013/dsa-2644

http://secunia.com/advisories/52471

http://lists.opensuse.org/opensuse-updates/2013-03/msg00077.html

http://lists.opensuse.org/opensuse-updates/2013-03/msg00065.html

http://anonsvn.wireshark.org/viewvc?view=revision&revision=48011

Details

Source: Mitre, NVD

Published: 2013-03-07

Updated: 2018-10-30

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High