CVE-2014-2282 : The dissect_protocol_data_parameter function in epan/dissectors/packet-m3ua.c in the M3UA dissector in Wireshark 1.10.x

The dissect_protocol_data_parameter function in epan/dissectors/packet-m3ua.c in the M3UA dissector in Wireshark 1.10.x before 1.10.6 does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) via a crafted SS7 MTP3 packet.

Published 2014-03-11 13:01:10

Updated 2016-04-04 13:14:53

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowDenial of service

Exploit prediction scoring system (EPSS) score for CVE-2014-2282

Probability of exploitation activity in the next 30 days: 0.26%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 63 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2014-2282

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

CWE ids for CVE-2014-2282

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-2282

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9699

Bug Access Denied
http://anonsvn.wireshark.org/viewvc/trunk/epan/dissectors/packet-m3ua.c?r1=51608&r2=51607&pathrev=51608

code.wireshark Code Review - wireshark.git/tree
Patch
http://www.wireshark.org/security/wnpa-sec-2014-02.html

Wireshark · wnpa-sec-2014-02 · M3UA dissector crash
Vendor Advisory
http://www.securitytracker.com/id/1029907

Wireshark NFS/M3UA/RLC Dissector Bugs Let Remote Users Deny Service and MPEG Buffer Overflow Lets Remote Users Execute Arbitrary Code - SecurityTracker

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2014-03/msg00046.html

openSUSE-SU-2014:0382-1: moderate: wireshark to 1.8.13/1.10.6

CVEs referencing this url
http://anonsvn.wireshark.org/viewvc?view=revision&revision=51608

code.wireshark Code Review - wireshark.git/tree
Patch
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_wireshark10

Multiple vulnerabilities in Wireshark | Oracle Third Party Vulnerability Resolution Blog

CVEs referencing this url

Products affected by CVE-2014-2282

Wireshark » Wireshark » Version: 1.10.0
cpe:2.3:a:wireshark:wireshark:1.10.0:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 1.10.1
cpe:2.3:a:wireshark:wireshark:1.10.1:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 1.10.2
cpe:2.3:a:wireshark:wireshark:1.10.2:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 1.10.3
cpe:2.3:a:wireshark:wireshark:1.10.3:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 1.10.4
cpe:2.3:a:wireshark:wireshark:1.10.4:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 1.10.5
cpe:2.3:a:wireshark:wireshark:1.10.5:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2014-2282

Exploit prediction scoring system (EPSS) score for CVE-2014-2282

CVSS scores for CVE-2014-2282

CWE ids for CVE-2014-2282

References for CVE-2014-2282

Products affected by CVE-2014-2282