CVE-2009-3550

Published: Oct 30, 2009Modified: Apr 23, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information.

Affected (28)

Products: Wireshark: Wireshark

1 product

Configuration A

28 vulnerable

Vulnerable Software	Affected Versions
Wireshark Wireshark	Version 0.10.10
Wireshark Wireshark	Version 0.10.11
Wireshark Wireshark	Version 0.10.12
Wireshark Wireshark	Version 0.10.13
Wireshark Wireshark	Version 0.10.14
Wireshark Wireshark	Version 0.10.2
Wireshark Wireshark	Version 0.10.3
Wireshark Wireshark	Version 0.10.4
Wireshark Wireshark	Version 0.10.5
Wireshark Wireshark	Version 0.10.6
Wireshark Wireshark	Version 0.10.7
Wireshark Wireshark	Version 0.10.8
Wireshark Wireshark	Version 0.10.9
Wireshark Wireshark	Version 1.0.0
Wireshark Wireshark	Version 1.0.1
Wireshark Wireshark	Version 1.0.2
Wireshark Wireshark	Version 1.0.3
Wireshark Wireshark	Version 1.0.4
Wireshark Wireshark	Version 1.0.5
Wireshark Wireshark	Version 1.0.6
Wireshark Wireshark	Version 1.0.7
Wireshark Wireshark	Version 1.0.8
Wireshark Wireshark	Version 1.0.9
Wireshark Wireshark	Version 1.0
Wireshark Wireshark	Version 1.2.0
Wireshark Wireshark	Version 1.2.1
Wireshark Wireshark	Version 1.2.2
Wireshark Wireshark	Version 1.2

References (26)

http://secunia.com/advisories/37175

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/37409

Source: secalert@redhat.com

http://secunia.com/advisories/37477

Source: secalert@redhat.com

http://www.debian.org/security/2009/dsa-1942

Source: secalert@redhat.com

http://www.securityfocus.com/bid/36846

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2009/3061

Source: secalert@redhat.com

PatchVendor Advisory

http://www.wireshark.org/docs/relnotes/wireshark-1.0.10.html

Source: secalert@redhat.com

PatchVendor Advisory

http://www.wireshark.org/docs/relnotes/wireshark-1.2.3.html

Source: secalert@redhat.com

PatchVendor Advisory

http://www.wireshark.org/security/wnpa-sec-2009-07.html

Source: secalert@redhat.com

Vendor Advisory

http://www.wireshark.org/security/wnpa-sec-2009-08.html

Source: secalert@redhat.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/54017

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10103

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6005

Source: secalert@redhat.com

http://secunia.com/advisories/37175

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/37409

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/37477

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2009/dsa-1942

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/36846

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2009/3061

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.wireshark.org/docs/relnotes/wireshark-1.0.10.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.wireshark.org/docs/relnotes/wireshark-1.2.3.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.wireshark.org/security/wnpa-sec-2009-07.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.wireshark.org/security/wnpa-sec-2009-08.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/54017

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10103

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6005

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.