CVE-2014-2281

Wireshark 1.8.x-1.8.12 and 1.10.x-1.10.5 - Denial of Service via NFS Packet Length Validation

Title source: llm
STIX 2.1

Description

The nfs_name_snoop_add_name function in epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 does not validate a certain length value, which allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted NFS packet.

References (13)

Core 13
Core References
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2014-03/msg00047.html
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2014/dsa-2871
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0341.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0342.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/57489
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/57480
Vendor Advisory x_refsource_confirm
http://www.wireshark.org/security/wnpa-sec-2014-01.html
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2014-03/msg00046.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1029907

Scores

EPSS 0.0312
EPSS Percentile 87.0%

Details

CWE
CWE-20
Status published
Products (19)
wireshark/wireshark 1.8.0
wireshark/wireshark 1.8.1
wireshark/wireshark 1.8.2
wireshark/wireshark 1.8.3
wireshark/wireshark 1.8.4
wireshark/wireshark 1.8.5
wireshark/wireshark 1.8.6
wireshark/wireshark 1.8.7
wireshark/wireshark 1.8.8
wireshark/wireshark 1.8.9
... and 9 more
Published Mar 11, 2014
Tracked Since Feb 18, 2026