Home

CVE-2016-7177

Description

epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

Risk Information

Base Score
5.9
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.558

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities fixed in Wireshark x64 2.0.6Windows
Multiple Vulnerabilities are affected in WireShark For Mac 2.0.0Mac
Multiple Vulnerabilities are affected in WireShark For Mac 2.0.1Mac
Multiple Vulnerabilities are affected in WireShark For Mac 2.0.2Mac
Multiple Vulnerabilities are affected in WireShark For Mac 2.0.3Mac
Multiple Vulnerabilities are affected in WireShark For Mac 2.0.4Mac
Multiple Vulnerabilities are affected in WireShark For Mac 2.0.5Mac
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) libwireshark8-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) libwireshark8-debuginfo-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) libwiretap6-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) libwiretap6-debuginfo-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) libwscodecs1-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) libwscodecs1-debuginfo-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) libwsutil7-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) libwsutil7-debuginfo-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) wireshark-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) wireshark-debuginfo-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) wireshark-debugsource-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) wireshark-gtk-2.2.6-44.3.x86_64.rpmLinux
SUSE-SU-2017:1442-1(SUSE Linux Enterprise Desktop 12-SP1 ) wireshark-gtk-debuginfo-2.2.6-44.3.x86_64.rpmLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-338541Wireshark (3.6.24)
PATCH-611905WireShark for Mac (Apple Silicon) (4.4.9)
PATCH-611905WireShark for Mac (Apple Silicon) (4.4.9)
PATCH-611905WireShark for Mac (Apple Silicon) (4.4.9)
PATCH-611905WireShark for Mac (Apple Silicon) (4.4.9)
PATCH-611905WireShark for Mac (Apple Silicon) (4.4.9)
PATCH-611905WireShark for Mac (Apple Silicon) (4.4.9)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234