CVE-2008-1072

Published: Feb 28, 2008Modified: Apr 23, 2026

4.7

Vector

AV:L/AC:M/Au:N/C:N/I:N/A:C

Exploitability: 3.4 / Impact: 6.9

Source: NVD

Description

The TFTP dissector in Wireshark (formerly Ethereal) 0.6.0 through 0.99.7, when running on Ubuntu 7.10, allows remote attackers to cause a denial of service (crash or memory consumption) via a malformed packet, possibly related to a Cairo library bug.

Affected (15)

Products: Wireshark: Wireshark

1 product

Configuration A

15 vulnerable

Vulnerable Software	Affected Versions
Wireshark Wireshark	Version 0.10.13
Wireshark Wireshark	Version 0.10.4
Wireshark Wireshark	Version 0.10
Wireshark Wireshark	Version 0.6
Wireshark Wireshark	Version 0.7.9
Wireshark Wireshark	Version 0.8.16
Wireshark Wireshark	Version 0.9.10
Wireshark Wireshark	Version 0.99.1
Wireshark Wireshark	Version 0.99.2
Wireshark Wireshark	Version 0.99.3
Wireshark Wireshark	Version 0.99.4
Wireshark Wireshark	Version 0.99.5
Wireshark Wireshark	Version 0.99.6
Wireshark Wireshark	Version 0.99.7
Wireshark Wireshark	Version 0.99

References (46)

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html

Source: cve@mitre.org

http://secunia.com/advisories/29156

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/29188

Source: cve@mitre.org

http://secunia.com/advisories/29223

Source: cve@mitre.org

http://secunia.com/advisories/29242

Source: cve@mitre.org

http://secunia.com/advisories/29511

Source: cve@mitre.org

http://secunia.com/advisories/29736

Source: cve@mitre.org

http://secunia.com/advisories/32091

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200803-32.xml

Source: cve@mitre.org

http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm

Source: cve@mitre.org

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0092

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDVSA-2008:057

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2008-0890.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/488967/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/28025

Source: cve@mitre.org

http://www.securitytracker.com/id?1019515

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/0704

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/2773

Source: cve@mitre.org

http://www.wireshark.org/security/wnpa-sec-2008-01.html

Source: cve@mitre.org

https://issues.rpath.com/browse/RPL-2296

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10188

Source: cve@mitre.org

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00140.html

Source: cve@mitre.org

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00228.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29156

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/29188

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29223

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29242

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29511

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/29736

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/32091

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200803-32.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm

Source: af854a3a-2127-422b-91ae-364da2661108

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0092

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2008:057

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2008-0890.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/488967/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/28025

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1019515

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/0704

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/2773

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.wireshark.org/security/wnpa-sec-2008-01.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://issues.rpath.com/browse/RPL-2296

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10188

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00140.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00228.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.