CVE-2013-2476

Loading...

General

Score:6.1/10.0
Severity:Medium
Category:Resource Management Error

Impact Metrics

Confidentiality:None
Integrity:None
Availability:Complete

Exploitability Metrics

Access Vector:Adjacent Network
Access Complexity:Low
Authentication:None

Relative vulnerabilities

CVE-2012-6052, CVE-2012-6053, CVE-2012-6054, CVE-2012-6055, CVE-2012-6056, CVE-2012-6057, CVE-2012-6058, CVE-2012-6059, CVE-2012-6060, CVE-2012-6061, CVE-2012-6062, CVE-2013-1572, CVE-2013-1573, CVE-2013-1574, CVE-2013-1575, CVE-2013-1576, CVE-2013-1577, CVE-2013-1578, CVE-2013-1579, CVE-2013-1580, CVE-2013-1581, CVE-2013-2475, CVE-2013-2477, CVE-2013-2478, CVE-2013-2479, CVE-2013-2480, CVE-2013-2481, CVE-2013-2482, CVE-2013-2483, CVE-2013-2484, CVE-2013-2485, CVE-2013-2486, CVE-2013-2487, CVE-2013-2488, CVE-2013-4079, CVE-2013-4080, CVE-2013-4927, CVE-2013-4929, CVE-2013-4931, CVE-2013-5719, CVE-2013-5721, CVE-2013-6339, CVE-2013-7112, CVE-2015-6243, CVE-2015-6246, CVE-2015-6248, CVE-2016-4006, CVE-2016-4079, CVE-2016-4080, CVE-2016-4081, CVE-2016-4082, CVE-2016-4085

Published on 07/03/13 - Updated on 30/10/18

Description

The dissect_hartip function in epan/dissectors/packet-hartip.c in the HART/IP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a packet with a header that is too short.

Category: Resource Management Error

CWE-399 (Resource Management Errors)
Weaknesses in this category are related to improper management of system resources.

Security Notices

US National Vulnerability DatabaseCVE-2013-2476
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2013-AVI-173
Debian LTSDLA-497-1
Renater 2013/VULN101
SUSE SUSE-SU-2013:0714

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
opensuseopensuse
wiresharkwireshark

Share this vulnerability with:

Twitter Facebook LinkedIn Mail