Home

CVE-2012-4048

Description

The PPP dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted packet, as demonstrated by a usbmon dump.

Risk Information

Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.209

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2012-4049,CVE-2012-4048 are fixed in Wireshark x64 1.4.14Windows
Vulnerabilities CVE-2012-4049,CVE-2012-4048 are fixed in Wireshark x64 1.6.9Windows
Vulnerabilities CVE-2012-4049,CVE-2012-4048 are fixed in Wireshark x64 1.8.1Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.0Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.1Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.2Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.3Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.4Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.5Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.6Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.7Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.6.0Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.8Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.6.1Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.6.2Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.9Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.10Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.6.3Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.6.4Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.11Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.6.5Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.12Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.4.13Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.6.6Windows
Multiple Vulnerabilities are affected in Wireshark (X64) 1.6.7Windows
Vulnerabilities CVE-2012-2394,CVE-2012-4048,CVE-2012-4049 are affected in Wireshark (X64) 1.6.8Windows
Vulnerabilities CVE-2012-4048,CVE-2012-4049 are affected in Wireshark (X64) 1.8.0Windows
Vulnerabilities CVE-2012-4049,CVE-2012-4048 are fixed in Wireshark for Mac 1.8.1Mac
Vulnerabilities CVE-2012-4049,CVE-2012-4048 are fixed in Wireshark for Mac 1.6.9Mac
Vulnerabilities CVE-2012-4049,CVE-2012-4048 are fixed in Wireshark for Mac 1.4.14Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-338541Wireshark (3.6.24)
PATCH-338541Wireshark (3.6.24)
PATCH-338541Wireshark (3.6.24)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-352320Wireshark (X64) (4.6.0)
PATCH-612949WireShark for Mac (4.6.2)
PATCH-612949WireShark for Mac (4.6.2)
PATCH-612949WireShark for Mac (4.6.2)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234