CVE-2009-2563

Unspecified vulnerability in the Infiniband dissector in Wireshark 1.0.6 through 1.2.0, when running on unspecified platforms, allows remote attackers to cause a denial of service (crash) via unknown vectors.

Published: Jul 21, 2009
Updated: Apr 13, 2023
CVE: CVE-2009-2563
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.1
AV:N/AC:M/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
wireshark / wireshark	1.2.0	1.2.0.x
wireshark / wireshark	1.0.6	1.0.6.x
wireshark / wireshark	1.0.8	1.0.8.x
wireshark / wireshark	1.0.7	1.0.7.x

http://secunia.com/advisories/35884
http://www.mandriva.com/security/advisories?name=MDVSA-2009:194
http://www.mandriva.com/security/advisories?name=MDVSA-2010:031
http://www.openwall.com/lists/oss-security/2009/09/17/15
http://www.openwall.com/lists/oss-security/2009/09/18/2
http://www.securityfocus.com/bid/35748
http://www.vupen.com/english/advisories/2009/1970
http://www.wireshark.org/docs/relnotes/wireshark-1.0.9.html
http://www.wireshark.org/security/wnpa-sec-2009-04.html
http://www.wireshark.org/security/wnpa-sec-2009-05.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11210
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6321

Vulnerability Database

289,784

CVE-2009-2563