A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.
References
Configurations
No configuration.
History
29 Aug 2024, 20:36
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-120 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
23 Mar 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Feb 2024, 08:15
Type | Values Removed | Values Added |
---|---|---|
Summary | A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected. |
21 Feb 2024, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-21 19:15
Updated : 2024-08-29 20:36
NVD link : CVE-2024-24479
Mitre link : CVE-2024-24479
CVE.ORG link : CVE-2024-24479
JSON object : View
Products Affected
No product.
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')