CVE-2009-3829
Wireshark < 1.2.2 - Remote Code Execution via Crafted ERF File
Title source: llmDescription
Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability."
References (9)
Core 9
Core References
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2009/dsa-1942
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5979
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37477
Patch x_refsource_confirm
http://anonsvn.wireshark.org/viewvc/trunk/wiretap/erf.c?view=markup&pathrev=29364
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37409
Patch, Vendor Advisory x_refsource_confirm
http://www.wireshark.org/docs/relnotes/wireshark-1.2.2.html
Issue Tracking x_refsource_confirm
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3849
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9945
Patch, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/676492
Scores
EPSS
0.0613
EPSS Percentile
90.9%
Details
CWE
CWE-189
Status
published
Products (50)
wireshark/wireshark
0.6
wireshark/wireshark
0.7.9
wireshark/wireshark
0.8.16
wireshark/wireshark
0.8.19
wireshark/wireshark
0.8.20
wireshark/wireshark
0.9.2
wireshark/wireshark
0.9.5
wireshark/wireshark
0.9.6
wireshark/wireshark
0.9.7
wireshark/wireshark
0.9.8
... and 40 more
Published
Oct 30, 2009
Tracked Since
Feb 18, 2026