← Back

CVE-2009-1210

nvd nist
Published: Apr 1, 2009Modified: Apr 23, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information.

Affected (42)

Products: Wireshark: Wireshark
Wireshark
1 product
Wireshark
Configuration A
42 vulnerable
Vulnerable SoftwareAffected Versions
Wireshark
Wireshark
Up to 1.0.5
Wireshark
Version 0.10.10
Wireshark
Version 0.10.11
Wireshark
Version 0.10.12
Wireshark
Version 0.10.13
Wireshark
Version 0.10.14
Wireshark
Version 0.10.1
Wireshark
Version 0.10.2
Wireshark
Version 0.10.3
Wireshark
Version 0.10.4
Wireshark
Version 0.10.5
Wireshark
Version 0.10.6
Wireshark
Version 0.10.7
Wireshark
Version 0.10.8
Wireshark
Version 0.10.9
Wireshark
Version 0.10
Wireshark
Version 0.6
Wireshark
Version 0.7.9
Wireshark
Version 0.8.16
Wireshark
Version 0.8.19
Wireshark
Version 0.9.10
Wireshark
Version 0.9.14
Wireshark
Version 0.9.5
Wireshark
Version 0.9.7
Wireshark
Version 0.9.8
Wireshark
Version 0.99.0
Wireshark
Version 0.99.1
Wireshark
Version 0.99.2
Wireshark
Version 0.99.3
Wireshark
Version 0.99.4
Wireshark
Version 0.99.5
Wireshark
Version 0.99.6
Wireshark
Version 0.99.6a
Wireshark
Version 0.99.7
Wireshark
Version 0.99.8
Wireshark
Version 0.99
Wireshark
Version 1.0.0
Wireshark
Version 1.0.1
Wireshark
Version 1.0.2
Wireshark
Version 1.0.3
Wireshark
Version 1.0.4
Wireshark
Version 1.0

Related CWEs

CWE-134
Use of Externally-Controlled Format String
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

References (44)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.