CVE-2007-6439

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2007-6439
Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite or large loop) via the (1) IPv6 or (2) USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Firebird/Interbase, but it is already covered by CVE-2007-6116. The DCP ETSI issue is already covered by CVE-2007-6119.

6.1 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:A/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 6.5 / Impact : 6.9

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://bugs.gentoo.org/show_bug.cgi?id=199958
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html
http://secunia.com/advisories/27777 Vendor Advisory
http://secunia.com/advisories/28288 Vendor Advisory
http://secunia.com/advisories/28304 Vendor Advisory
http://secunia.com/advisories/28325 Vendor Advisory
http://secunia.com/advisories/28564 Vendor Advisory
http://secunia.com/advisories/29048 Vendor Advisory
http://security.gentoo.org/glsa/glsa-200712-23.xml
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004
http://www.mandriva.com/security/advisories?name=MDVSA-2008:001
http://www.mandriva.com/security/advisories?name=MDVSA-2008:1
http://www.redhat.com/support/errata/RHSA-2008-0058.html
http://www.securityfocus.com/archive/1/485792/100/0/threaded
http://www.securityfocus.com/bid/27071
http://www.wireshark.org/security/wnpa-sec-2007-03.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/39180
https://exchange.xforce.ibmcloud.com/vulnerabilities/39181
https://issues.rpath.com/browse/RPL-1975
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10331
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15002
http://bugs.gentoo.org/show_bug.cgi?id=199958
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html
http://secunia.com/advisories/27777 Vendor Advisory
http://secunia.com/advisories/28288 Vendor Advisory
http://secunia.com/advisories/28304 Vendor Advisory
http://secunia.com/advisories/28325 Vendor Advisory
http://secunia.com/advisories/28564 Vendor Advisory
http://secunia.com/advisories/29048 Vendor Advisory
http://security.gentoo.org/glsa/glsa-200712-23.xml
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004
http://www.mandriva.com/security/advisories?name=MDVSA-2008:001
http://www.mandriva.com/security/advisories?name=MDVSA-2008:1
http://www.redhat.com/support/errata/RHSA-2008-0058.html
http://www.securityfocus.com/archive/1/485792/100/0/threaded
http://www.securityfocus.com/bid/27071
http://www.wireshark.org/security/wnpa-sec-2007-03.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/39180
https://exchange.xforce.ibmcloud.com/vulnerabilities/39181
https://issues.rpath.com/browse/RPL-1975
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10331
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15002
Configurations

Configuration 1 (hide)

cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
History

21 Nov 2024, 00:40

Type Values Removed Values Added
References () http://bugs.gentoo.org/show_bug.cgi?id=199958 - () http://bugs.gentoo.org/show_bug.cgi?id=199958 -
References () http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html - () http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html -
References () http://secunia.com/advisories/27777 - Vendor Advisory () http://secunia.com/advisories/27777 - Vendor Advisory
References () http://secunia.com/advisories/28288 - Vendor Advisory () http://secunia.com/advisories/28288 - Vendor Advisory
References () http://secunia.com/advisories/28304 - Vendor Advisory () http://secunia.com/advisories/28304 - Vendor Advisory
References () http://secunia.com/advisories/28325 - Vendor Advisory () http://secunia.com/advisories/28325 - Vendor Advisory
References () http://secunia.com/advisories/28564 - Vendor Advisory () http://secunia.com/advisories/28564 - Vendor Advisory
References () http://secunia.com/advisories/29048 - Vendor Advisory () http://secunia.com/advisories/29048 - Vendor Advisory
References () http://security.gentoo.org/glsa/glsa-200712-23.xml - () http://security.gentoo.org/glsa/glsa-200712-23.xml -
References () http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004 - () http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:001 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:001 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:1 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:1 -
References () http://www.redhat.com/support/errata/RHSA-2008-0058.html - () http://www.redhat.com/support/errata/RHSA-2008-0058.html -
References () http://www.securityfocus.com/archive/1/485792/100/0/threaded - () http://www.securityfocus.com/archive/1/485792/100/0/threaded -
References () http://www.securityfocus.com/bid/27071 - () http://www.securityfocus.com/bid/27071 -
References () http://www.wireshark.org/security/wnpa-sec-2007-03.html - () http://www.wireshark.org/security/wnpa-sec-2007-03.html -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/39180 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/39180 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/39181 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/39181 -
References () https://issues.rpath.com/browse/RPL-1975 - () https://issues.rpath.com/browse/RPL-1975 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10331 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10331 -
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15002 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15002 -

07 Nov 2023, 02:01

Type Values Removed Values Added
Summary Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite or large loop) via the (1) IPv6 or (2) USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Firebird/Interbase, but it is already covered by CVE-2007-6116. The DCP ETSI issue is already covered by CVE-2007-6119. Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite or large loop) via the (1) IPv6 or (2) USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Firebird/Interbase, but it is already covered by CVE-2007-6116. The DCP ETSI issue is already covered by CVE-2007-6119.
Information

Published : 2007-12-19 22:46

Updated : 2024-11-21 00:40

NVD link : CVE-2007-6439

Mitre link : CVE-2007-6439

CVE.ORG link : CVE-2007-6439

JSON object : View

Products Affected

wireshark

  • wireshark
CWE
CWE-399

Resource Management Errors


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024