CVE-2015-8723

moderate-risk
Published 2016-01-04

The AirPDcapPacketProcess function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the relationship between the total length and the capture length, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.

Do I need to act?

~
1.3% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
39005
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10 Medium
LOCAL / LOW complexity

Affected Products (9)

Affected Vendors

Wireshark

References (16)

http://www.debian.org/security/2016/dsa-3505
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
http://www.securityfocus.com/bid/79382
http://www.securitytracker.com/id/1034551
Vendor Advisory http://www.wireshark.org/security/wnpa-sec-2015-42.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11790
https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=40b28318...
https://security.gentoo.org/glsa/201604-05
http://www.debian.org/security/2016/dsa-3505
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
http://www.securityfocus.com/bid/79382
http://www.securitytracker.com/id/1034551
Vendor Advisory http://www.wireshark.org/security/wnpa-sec-2015-42.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11790
https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=40b28318...
https://security.gentoo.org/glsa/201604-05
44
/ 100
moderate-risk
Severity 18/34 · Moderate
Exploitability 11/34 · Low
Exposure 15/34 · Moderate