CVE-2007-6113

Wireshark <0.99.6 - DoS

Title source: llm

Description

Integer signedness error in the DNP3 dissector in Wireshark (formerly Ethereal) 0.10.12 to 0.99.6 allows remote attackers to cause a denial of service (long loop) via a malformed DNP3 packet.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Beyond Security · perldoslinux

https://www.exploit-db.com/exploits/4347

View Code ZIP pw:eip

References (32)

[Vendor Advisory] http://secunia.com/advisories/27777

[Issue Tracking] https://issues.rpath.com/browse/RPL-1975

[Vendor Advisory] http://secunia.com/advisories/29048

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1018635

[Patch] http://www.securityfocus.com/bid/26532

[Patch, Vendor Advisory] http://www.wireshark.org/security/wnpa-sec-2007-03.html

[Vendor Advisory] http://secunia.com/advisories/28564

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/485792/100/0/threaded

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-200712-23.xml

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/478497/100/0/threaded

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2008-0059.html

[Vendor Advisory] http://secunia.com/advisories/28304

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1018988

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9841

[Vendor Advisory] https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00712.html

[Vendor Advisory] http://secunia.com/advisories/28325

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2008:1

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/4347

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2008:001

[Various Sources] http://www.securiteam.com/securitynews/5LP0V00MAI.html

... and 12 more

Scores

EPSS 0.0865

EPSS Percentile 92.5%

Details

CWE

CWE-189

Status published

Products (32)

wireshark/wireshark 0.6

wireshark/wireshark 0.7.9

wireshark/wireshark 0.8.16

wireshark/wireshark 0.8.19

wireshark/wireshark 0.8.20

wireshark/wireshark 0.9.2

wireshark/wireshark 0.9.5

wireshark/wireshark 0.9.6

wireshark/wireshark 0.9.7

wireshark/wireshark 0.9.8

... and 22 more

Published Nov 23, 2007

Tracked Since Feb 18, 2026