Description
epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted ZCL packet, related to Discover Attributes.
Exploits (1)
References (15)
Core 15
Core References
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/43068
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/44986
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/42290
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14713
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0212
Patch x_refsource_confirm
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5303
Patch x_refsource_misc
https://bugs.wireshark.org/bugzilla/attachment.cgi?id=5315&action=edit
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/69355
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/42877
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
Vendor Advisory x_refsource_confirm
http://www.wireshark.org/security/wnpa-sec-2010-14.html
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0076
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/3038
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/15973
Scores
EPSS
0.0542
EPSS Percentile
90.2%
Details
CWE
CWE-399
Status
published
Products (2)
wireshark/wireshark
1.4.0
wireshark/wireshark
1.4.1
Published
Nov 26, 2010
Tracked Since
Feb 18, 2026