CVE-2011-0713: Buffer Overflow

First published: Thu Feb 17 2011(Updated: )

A heap-based buffer overflow was found in the way Wireshark processes signalling traces generated by Gammu (www.gammu.org) from Nokia DCT3 phones in Netmonitor mode. An attacker could use this flaw to cause wireshark executable to crash or, potentially, execute arbitrary code with the privileges of the user running wireshark, if the local user opened a specially-crafted capture file. The following upstream commit fixes this issue: <a href="http://anonsvn.wireshark.org/viewvc?view=rev&amp;revision=35953">http://anonsvn.wireshark.org/viewvc?view=rev&amp;revision=35953</a>

Credit: secalert@redhat.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-historical
• collector/nvd-index
• agent/type
• agent/first-publish-date
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• agent/author
• agent/severity
• agent/weakness
• agent/references
• agent/last-modified-date
• agent/remedy
• agent/description
• agent/event
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2011-0713
• agent/trending
• agent/tags
• agent/source
• vendor/wireshark
• canonical/wireshark wireshark
• version/wireshark wireshark/1.4.2
• version/wireshark wireshark/1.2.7
• version/wireshark wireshark/1.4.0
• version/wireshark wireshark/1.2.11
• version/wireshark wireshark/1.2.10
• version/wireshark wireshark/1.2.6
• version/wireshark wireshark/1.2.8
• version/wireshark wireshark/1.2.0
• version/wireshark wireshark/1.2.14
• version/wireshark wireshark/1.2.3
• version/wireshark wireshark/1.2.12
• version/wireshark wireshark/1.2.13
• version/wireshark wireshark/1.2.5
• version/wireshark wireshark/1.2.1
• version/wireshark wireshark/1.2.4
• version/wireshark wireshark/1.4.3
• version/wireshark wireshark/1.2.9
• version/wireshark wireshark/1.2.2
• version/wireshark wireshark/1.4.1