{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-03-01T00:00:00", "descriptions": [{"lang": "en", "value": "Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-referential ASN.1 CHOICE values."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-18T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516"}, {"name": "ADV-2011-0622", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0622"}, {"name": "MDVSA-2011:044", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:044"}, {"name": "1025148", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1025148"}, {"name": "oval:org.mitre.oval:def:14724", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14724"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-1142", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-referential ASN.1 CHOICE values."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html", "refsource": "CONFIRM", "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html"}, {"name": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html", "refsource": "CONFIRM", "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html"}, {"name": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516", "refsource": "CONFIRM", "url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516"}, {"name": "ADV-2011-0622", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0622"}, {"name": "MDVSA-2011:044", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:044"}, {"name": "1025148", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1025148"}, {"name": "oval:org.mitre.oval:def:14724", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14724"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:14:27.833Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516"}, {"name": "ADV-2011-0622", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0622"}, {"name": "MDVSA-2011:044", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:044"}, {"name": "1025148", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1025148"}, {"name": "oval:org.mitre.oval:def:14724", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14724"}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-835", "lang": "en", "description": "CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-02-23T19:47:06.823820Z", "id": "CVE-2011-1142", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-21T16:13:16.900Z"}}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-1142", "datePublished": "2011-03-03T00:00:00", "dateReserved": "2011-03-02T00:00:00", "dateUpdated": "2024-10-21T16:13:16.900Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "http://www.vupen.com/english/advisories/2011/0622", "name": "ADV-2011-0622", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"]}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:044", "name": "MDVSA-2011:044", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"]}, {"url": "http://www.securitytracker.com/id?1025148", "name": "1025148", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"]}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14724", "name": "oval:org.mitre.oval:def:14724", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:14:27.833Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2011-1142", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-02-23T19:47:06.823820Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-835", "description": "CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-21T16:13:07.806Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-03-01T00:00:00", "references": [{"url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html", "tags": ["x_refsource_CONFIRM"]}, {"url": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516", "tags": ["x_refsource_CONFIRM"]}, {"url": "http://www.vupen.com/english/advisories/2011/0622", "name": "ADV-2011-0622", "tags": ["vdb-entry", "x_refsource_VUPEN"]}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:044", "name": "MDVSA-2011:044", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"]}, {"url": "http://www.securitytracker.com/id?1025148", "name": "1025148", "tags": ["vdb-entry", "x_refsource_SECTRACK"]}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14724", "name": "oval:org.mitre.oval:def:14724", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"]}], "descriptions": [{"lang": "en", "value": "Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-referential ASN.1 CHOICE values."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2017-09-18T12:57:01"}, "x_legacyV4Record": {"affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"version": {"version_data": [{"version_value": "n/a"}]}, "product_name": "n/a"}]}, "vendor_name": "n/a"}]}}, "data_type": "CVE", "references": {"reference_data": [{"url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html", "name": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html", "refsource": "CONFIRM"}, {"url": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html", "name": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html", "refsource": "CONFIRM"}, {"url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516", "name": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516", "refsource": "CONFIRM"}, {"url": "http://www.vupen.com/english/advisories/2011/0622", "name": "ADV-2011-0622", "refsource": "VUPEN"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:044", "name": "MDVSA-2011:044", "refsource": "MANDRIVA"}, {"url": "http://www.securitytracker.com/id?1025148", "name": "1025148", "refsource": "SECTRACK"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14724", "name": "oval:org.mitre.oval:def:14724", "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "eng", "value": "Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-referential ASN.1 CHOICE values."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2011-1142", "STATE": "PUBLIC", "ASSIGNER": "cve@mitre.org"}}}}, "cveMetadata": {"cveId": "CVE-2011-1142", "state": "PUBLISHED", "dateUpdated": "2024-10-21T16:13:16.900Z", "dateReserved": "2011-03-02T00:00:00", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2011-03-03T00:00:00", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "1B9A59A8-7319-4F1F-AA1D-801B5F7C1974", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "B0059BA2-86B2-4DA5-A6C1-7248D07BB37C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "1C13C7D5-D344-45D2-9FF0-2C3388C94584", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "1D79DA61-F97C-4DCB-A2B7-FE67C5F10964", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "84D6DFA0-53A2-424C-A31C-88FD683E5674", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "4B441815-DF95-462C-B9F9-43E2F0B04A45", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.6:*:*:*:*:*:*:*", "matchCriteriaId": "4D09E4C0-0C75-4227-87E0-F2A06E240003", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "8DE4A9E3-5542-4483-9FA3-7F39C644563B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "FD8A1D30-CB46-4B3D-BED5-1D045F3E1058", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.9:*:*:*:*:*:*:*", "matchCriteriaId": "977DA99C-54EC-4DEA-AD8B-E71C5F77022F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.10:*:*:*:*:*:*:*", "matchCriteriaId": "8ECDB7F8-F97B-440E-98DB-893C4714D47B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.11:*:*:*:*:*:*:*", "matchCriteriaId": "27611804-AED3-443B-B1AE-25F8337FFA49", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.12:*:*:*:*:*:*:*", "matchCriteriaId": "77B9C6C4-A6CE-45D0-BE6C-B29E5C7A45C5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.13:*:*:*:*:*:*:*", "matchCriteriaId": "7B7726D3-607C-4D34-9FBE-ACBDCB1188E5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.14:*:*:*:*:*:*:*", "matchCriteriaId": "DFB96C81-69F9-49C4-A2FD-D0220A2AB4E1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.2.15:*:*:*:*:*:*:*", "matchCriteriaId": "73A8F429-4E43-4076-8F87-3BAF72306991", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "ABB6F1D5-64CC-474D-B123-818080ED7903", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "A5E0F58D-4CE5-4051-A0F6-9BFA2FC0D2DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "1CC3D171-73D0-4A14-A2AA-60C9739CD840", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "CF840746-1797-4ACC-8AFD-8FBD97E9F706", "vulnerable": true}, {"criteria": "cpe:2.3:a:wireshark:wireshark:1.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "87AA0CD8-5F45-4F3C-B72E-6D94EA4B2C8B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-referential ASN.1 CHOICE values."}, {"lang": "es", "value": "Vulnerabilidad de agotamiento de pila en la funci\u00f3n dissect_ber_choice del analizador BER de Wireshark 1.2.x hasta la versi\u00f3n 1.2.15 y 1.4.x hasta la 1.4.4. Puede permitier a atacantes remotos provocar una denegaci\u00f3n de servicio (bucle infinito) a trav\u00e9s de vectores que involucran valores ASN.1 CHOICE autoreferenciados."}], "id": "CVE-2011-1142", "lastModified": "2024-11-21T01:25:39.017", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2011-03-03T01:00:01.597", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:044"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id?1025148"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.vupen.com/english/advisories/2011/0622"}, {"source": "cve@mitre.org", "tags": ["Release Notes"], "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html"}, {"source": "cve@mitre.org", "tags": ["Release Notes"], "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14724"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:044"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id?1025148"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.vupen.com/english/advisories/2011/0622"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1516"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14724"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-835"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-835"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{"bugzilla": {"description": "Wireshark: Stack consumption vulnerability in BER dissector can cause DoS", "id": "681758", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681758"}, "csaw": false, "cvss": {"cvss_base_score": "2.9", "cvss_scoring_vector": "AV:A/AC:M/Au:N/C:N/I:N/A:P", "status": "draft"}, "cwe": "CWE-835", "details": ["Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-referential ASN.1 CHOICE values."], "name": "CVE-2011-1142", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:4", "fix_state": "Will not fix", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 4"}, {"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Will not fix", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Will not fix", "package_name": "wireshark", "product_name": "Red Hat Enterprise Linux 6"}], "public_date": "2011-03-01T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2011-1142\nhttps://nvd.nist.gov/vuln/detail/CVE-2011-1142"], "statement": "Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.", "threat_severity": "Low"}