Vulnerability Name:

CVE-2008-3933 (CCN-44893)

Assigned:2008-09-03
Published:2008-09-03
Updated:2018-10-11
Summary:Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncompress function.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:3.3 Low (CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P)
2.4 Low (Temporal CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-20
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2008-3933

Source: CCN
Type: RHSA-2008-0890
Moderate: wireshark security update

Source: CCN
Type: SA31674
Wireshark Denial of Service Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
31864

Source: SECUNIA
Type: UNKNOWN
31886

Source: SECUNIA
Type: UNKNOWN
32028

Source: SECUNIA
Type: UNKNOWN
32091

Source: SECUNIA
Type: UNKNOWN
32944

Source: GENTOO
Type: UNKNOWN
GLSA-200809-17

Source: CCN
Type: SECTRACK ID: 1020819
Wireshark NCP Dissector and zlib Processing Bugs Let Remote Users Deny Service

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2008-392.htm

Source: CCN
Type: ASA-2008-392
wireshark security update (RHSA-2008-0890)

Source: CONFIRM
Type: UNKNOWN
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0278

Source: DEBIAN
Type: UNKNOWN
DSA-1673

Source: DEBIAN
Type: DSA-1673
wireshark -- several vulnerabilities

Source: CCN
Type: GLSA-200809-17
Wireshark: Multiple Denials of Service

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2008:199

Source: REDHAT
Type: UNKNOWN
RHSA-2008:0890

Source: BUGTRAQ
Type: UNKNOWN
20080917 rPSA-2008-0278-1 tshark wireshark

Source: CCN
Type: BID-31009
Wireshark 1.0.2 Multiple Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1020819

Source: VUPEN
Type: UNKNOWN
ADV-2008-2493

Source: VUPEN
Type: UNKNOWN
ADV-2008-2773

Source: CCN
Type: Wireshark Web site
Wireshark: Download

Source: CCN
Type: wnpa-sec-2008-05
Multiple problems in Wireshark versions 0.9.7 to 1.0.2

Source: CONFIRM
Type: Patch
http://www.wireshark.org/security/wnpa-sec-2008-05.html

Source: CONFIRM
Type: UNKNOWN
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2649

Source: MISC
Type: UNKNOWN
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2682

Source: XF
Type: UNKNOWN
wireshark-zlib-dos(44893)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:9620

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-7936

Source: FEDORA
Type: UNKNOWN
FEDORA-2008-7894

Source: SUSE
Type: SUSE-SR:2009:001
SUSE Security Summary Report

Vulnerable Configuration:Configuration 1:
  • cpe:/a:wireshark:wireshark:0.10.2:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.3:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.4:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.5:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.6:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.7:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.8:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.9:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.14:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.0:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.1:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.6a:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

    • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

    • Configuration RedHat 3:
  • cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

    • Configuration RedHat 4:
  • cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

    • Configuration RedHat 5:
  • cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

    • Configuration RedHat 6:
  • cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

    • Configuration RedHat 7:
  • cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

    • Configuration RedHat 8:
  • cpe:/o:redhat:enterprise_linux:5::client_workstation:*:*:*:*:*

    • Configuration RedHat 9:
  • cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.1:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.4:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.6a:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.14:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.2:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.3:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.5:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.6:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.7:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.8:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.10.9:*:*:*:*:*:*:*
  • OR cpe:/a:wireshark:wireshark:0.99.0:*:*:*:*:*:*:*
  • AND
  • cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0::x86_64:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0::x86-64:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:x86_64:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20083933
    V
    		CVE-2008-3933
    2017-09-27
    oval:org.mitre.oval:def:29012
    P
    		RHSA-2008:0890 -- wireshark security update (Moderate)
    2015-08-17
    oval:org.mitre.oval:def:26105
    V
    		Denial of service vulnerability in Wireshark via crafted zlib-compressed data
    2014-10-20
    oval:org.mitre.oval:def:20196
    P
    		DSA-1673-1 wireshark - several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:8237
    P
    		DSA-1673 wireshark -- several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:21972
    P
    		ELSA-2008:0890: wireshark security update (Moderate)
    2014-05-26
    oval:org.mitre.oval:def:9620
    V
    		Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncompress function.
    2013-04-29
    oval:org.debian:def:1673
    V
    		several vulnerabilities
    2008-11-29
    oval:com.redhat.rhsa:def:20080890
    P
    		RHSA-2008:0890: wireshark security update (Moderate)
    2008-10-01
    BACK
    wireshark wireshark 0.10.2
    wireshark wireshark 0.10.3
    wireshark wireshark 0.10.4
    wireshark wireshark 0.10.5
    wireshark wireshark 0.10.6
    wireshark wireshark 0.10.7
    wireshark wireshark 0.10.8
    wireshark wireshark 0.10.9
    wireshark wireshark 0.10.14
    wireshark wireshark 0.99.0
    wireshark wireshark 0.99.1
    wireshark wireshark 0.99.2
    wireshark wireshark 0.99.3
    wireshark wireshark 0.99.4
    wireshark wireshark 0.99.5
    wireshark wireshark 0.99.6
    wireshark wireshark 0.99.6a
    wireshark wireshark 0.99.7
    wireshark wireshark 0.99.8
    wireshark wireshark 1.0.0
    wireshark wireshark 1.0.1
    wireshark wireshark 1.0.2
    wireshark wireshark 0.99.2
    wireshark wireshark 0.99.6
    wireshark wireshark 0.99.3
    wireshark wireshark 0.99.5
    wireshark wireshark 0.99.4
    wireshark wireshark 0.99.7
    wireshark wireshark 0.99.8
    wireshark wireshark 1.0.0
    wireshark wireshark 1.0.1
    wireshark wireshark 0.99.1
    wireshark wireshark 0.10.4
    wireshark wireshark 1.0.2
    wireshark wireshark 0.99.6a
    wireshark wireshark 0.10.14
    wireshark wireshark 0.10.2
    wireshark wireshark 0.10.3
    wireshark wireshark 0.10.5
    wireshark wireshark 0.10.6
    wireshark wireshark 0.10.7
    wireshark wireshark 0.10.8
    wireshark wireshark 0.10.9
    wireshark wireshark 0.99.0
    gentoo linux *
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat enterprise linux 4
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 4.0
    redhat enterprise linux 5
    redhat enterprise linux 5
    mandrakesoft mandrake linux 2008.0
    debian debian linux 4.0
    redhat enterprise linux 5
    mandrakesoft mandrake linux 2008.0
    mandrakesoft mandrake linux 2008.1 x86_64
    mandrakesoft mandrake linux 2008.1