CVE-2009-0599 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:N/I:N/A:P
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 83%

Vendor	Product	Version
wireshark	wireshark	0.99.7
wireshark	wireshark	0.99.8
wireshark	wireshark	1.0
wireshark	wireshark	1.0.0
wireshark	wireshark	1.0.1
wireshark	wireshark	1.0.2
wireshark	wireshark	1.0.3
wireshark	wireshark	1.0.4
wireshark	wireshark	1.0.5

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

wireshark

bullseye	3.4.10-0+deb11u1 fixed
etch	not-affected
bullseye (security)	3.4.16-0+deb11u1 fixed
bookworm	4.0.11-1~deb12u1 fixed
bookworm (security)	4.0.11-1~deb12u1 fixed
trixie	4.4.0-1 fixed
sid	4.4.1-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

wireshark

oneiric	not-affected
natty	not-affected
maverick	not-affected
lucid	not-affected
karmic	not-affected
jaunty	not-affected
intrepid	ignored
hardy	ignored
gutsy	ignored
dapper	dne

Known Exploits!

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html

http://osvdb.org/51815

http://secunia.com/advisories/33872

http://secunia.com/advisories/34144

http://secunia.com/advisories/34264

http://secunia.com/advisories/34344

http://support.avaya.com/elmodocs2/security/ASA-2009-082.htm

http://wiki.rpath.com/Advisories:rPSA-2009-0040

http://www.redhat.com/support/errata/RHSA-2009-0313.html

http://www.securityfocus.com/archive/1/501763/100/0/threaded

http://www.securityfocus.com/bid/33690

http://www.securitytracker.com/id?1021697

http://www.vupen.com/english/advisories/2009/0370

http://www.wireshark.org/security/wnpa-sec-2009-01.html

https://bugs.wireshark.org/bugzilla/attachment.cgi?id=2590

https://issues.rpath.com/browse/RPL-2984

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14732

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9677

https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00652.html

http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html

http://osvdb.org/51815

http://secunia.com/advisories/33872

http://secunia.com/advisories/34144

http://secunia.com/advisories/34264

http://secunia.com/advisories/34344

http://support.avaya.com/elmodocs2/security/ASA-2009-082.htm

http://wiki.rpath.com/Advisories:rPSA-2009-0040

http://www.redhat.com/support/errata/RHSA-2009-0313.html

http://www.securityfocus.com/archive/1/501763/100/0/threaded

http://www.securityfocus.com/bid/33690

http://www.securitytracker.com/id?1021697

http://www.vupen.com/english/advisories/2009/0370

http://www.wireshark.org/security/wnpa-sec-2009-01.html

https://bugs.wireshark.org/bugzilla/attachment.cgi?id=2590

https://issues.rpath.com/browse/RPL-2984

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14732

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9677

https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00652.html