CVE-2007-3389

Wireshark - Improper Input Validation

Title source: rule

Description

Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload.

Exploits (1)

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/wireshark/chunked.rb

View Code ZIP pw:eip

References (21)

[Third Party Advisory, VDB Entry] http://osvdb.org/37643

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2007:145

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2007-0709.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2007-0710.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2008-0059.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/24662

[Various Sources] http://www.wireshark.org/docs/relnotes/wireshark-0.99.6.html

[Various Sources] http://www.wireshark.org/security/wnpa-sec-2007-02.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/35207

[Issue Tracking] https://issues.rpath.com/browse/RPL-1498

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9964

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2007_15_sr.html

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-200708-12.xml

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1018315

[Third Party Advisory] http://secunia.com/advisories/25833

[Third Party Advisory] http://secunia.com/advisories/25987

[Third Party Advisory] http://secunia.com/advisories/26004

[Third Party Advisory] http://secunia.com/advisories/26499

[Third Party Advisory] http://secunia.com/advisories/27592

[Third Party Advisory] http://secunia.com/advisories/28583

... and 1 more

Scores

EPSS 0.2646

EPSS Percentile 96.3%

Details

CWE

CWE-20

Status published

Products (6)

wireshark/wireshark 0.99.0

wireshark/wireshark 0.99.1

wireshark/wireshark 0.99.2

wireshark/wireshark 0.99.3

wireshark/wireshark 0.99.4

wireshark/wireshark 0.99.5

Published Jun 26, 2007

Tracked Since Feb 18, 2026