CVE-2010-2286

Published: Jun 15, 2010Modified: Apr 29, 2026

3.3

Vector

AV:A/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 6.5 / Impact: 2.9

Source: NVD

Description

The SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.7 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.

Affected (41)

Products: Wireshark: Wireshark

1 product

Configuration A

32 vulnerable

Vulnerable Software	Affected Versions
Wireshark Wireshark	Version 0.10.10
Wireshark Wireshark	Version 0.10.11
Wireshark Wireshark	Version 0.10.12
Wireshark Wireshark	Version 0.10.13
Wireshark Wireshark	Version 0.10.14
Wireshark Wireshark	Version 0.10.7
Wireshark Wireshark	Version 0.10.8
Wireshark Wireshark	Version 0.10.9
Wireshark Wireshark	Version 0.8.20
Wireshark Wireshark	Version 0.99.0
Wireshark Wireshark	Version 0.99.1
Wireshark Wireshark	Version 0.99.2
Wireshark Wireshark	Version 0.99.3
Wireshark Wireshark	Version 0.99.4
Wireshark Wireshark	Version 0.99.5
Wireshark Wireshark	Version 0.99.6
Wireshark Wireshark	Version 0.99.7
Wireshark Wireshark	Version 0.99.8
Wireshark Wireshark	Version 1.0.0
Wireshark Wireshark	Version 1.0.10
Wireshark Wireshark	Version 1.0.11
Wireshark Wireshark	Version 1.0.12
Wireshark Wireshark	Version 1.0.13
Wireshark Wireshark	Version 1.0.1
Wireshark Wireshark	Version 1.0.2
Wireshark Wireshark	Version 1.0.3
Wireshark Wireshark	Version 1.0.4
Wireshark Wireshark	Version 1.0.5
Wireshark Wireshark	Version 1.0.6
Wireshark Wireshark	Version 1.0.7
Wireshark Wireshark	Version 1.0.8
Wireshark Wireshark	Version 1.0.9

Configuration B

9 vulnerable

Vulnerable Software	Affected Versions
Wireshark Wireshark	Version 1.2.0
Wireshark Wireshark	Version 1.2.1
Wireshark Wireshark	Version 1.2.2
Wireshark Wireshark	Version 1.2.3
Wireshark Wireshark	Version 1.2.4
Wireshark Wireshark	Version 1.2.5
Wireshark Wireshark	Version 1.2.6
Wireshark Wireshark	Version 1.2.7
Wireshark Wireshark	Version 1.2.8

Related CWEs

References (28)

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

Source: cve@mitre.org

http://secunia.com/advisories/40112

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/42877

Source: cve@mitre.org

http://secunia.com/advisories/43068

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDVSA-2010:113

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2010/06/11/1

Source: cve@mitre.org

http://www.securityfocus.com/bid/40728

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2010/1418

Source: cve@mitre.org

PatchVendor Advisory

http://www.vupen.com/english/advisories/2011/0076

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2011/0212

Source: cve@mitre.org

http://www.wireshark.org/security/wnpa-sec-2010-05.html

Source: cve@mitre.org

Vendor Advisory

http://www.wireshark.org/security/wnpa-sec-2010-06.html

Source: cve@mitre.org

Vendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11792

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/40112

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/42877

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/43068

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2010:113

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2010/06/11/1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/40728

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2010/1418

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.vupen.com/english/advisories/2011/0076

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2011/0212

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.wireshark.org/security/wnpa-sec-2010-05.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.wireshark.org/security/wnpa-sec-2010-06.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11792

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.