CVE-2015-8723

The AirPDcapPacketProcess function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the relationship between the total length and the capture length, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.

Published: Jan 4, 2016
Updated: Apr 13, 2023
CVE: CVE-2015-8723
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

CWE-20
CWE-119

Affected Software
References

Software	From	Fixed in
wireshark / wireshark	1.12.4	1.12.4.x
wireshark / wireshark	1.12.5	1.12.5.x
wireshark / wireshark	1.12.0	1.12.0.x
wireshark / wireshark	1.12.2	1.12.2.x
wireshark / wireshark	1.12.1	1.12.1.x
wireshark / wireshark	1.12.7	1.12.7.x
wireshark / wireshark	1.12.6	1.12.6.x
wireshark / wireshark	1.12.3	1.12.3.x
wireshark / wireshark	1.12.8	1.12.8.x

http://www.debian.org/security/2016/dsa-3505
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
http://www.securityfocus.com/bid/79382
http://www.securitytracker.com/id/1034551
http://www.wireshark.org/security/wnpa-sec-2015-42.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11790
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=40b283181c63cb28bc6f58d80315eccca6650da0
https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=40b283181c63cb28bc6f58d80315eccca6650da0
https://security.gentoo.org/glsa/201604-05

Vulnerability Database

CVE-2015-8723