CVE-2016-9376 : In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflow_v5.c by ensuring that certain length values were sufficiently large.

Published 2016-11-17 05:59:05

Updated 2017-07-28 01:29:09

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2016-9376

Probability of exploitation activity in the next 30 days: 0.30%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 66 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2016-9376

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
5.9	MEDIUM	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H	2.2	3.6	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2016-9376

CWE-399

Assigned by: nvd@nist.gov (Primary)

References for CVE-2016-9376

http://www.debian.org/security/2016/dsa-3719

Debian -- Security Information -- DSA-3719-1 wireshark
Third Party Advisory

CVEs referencing this url
http://www.securitytracker.com/id/1037313

Wireshark Bugs in Profinet I/O, AllJoyn, OpenFlow, DCERPC, and DTN Dissectors Let Remote Users Deny Service - SecurityTracker

CVEs referencing this url
http://www.securityfocus.com/bid/94369

Wireshark Multiple Denial of Service Vulnerabilities
Third Party Advisory;VDB Entry

CVEs referencing this url
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=f2a7af8d3928e18ef15778e63b9b6c78f8bd1bef

code.wireshark Code Review - wireshark.git/commit
Issue Tracking;Patch
https://www.wireshark.org/security/wnpa-sec-2016-60.html

Wireshark · wnpa-sec-2016-60 · OpenFlow crash
Vendor Advisory
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13071

13071 – Buildbot crash output: fuzz-2016-10-29-17840.pcap
Issue Tracking

Products affected by CVE-2016-9376

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.0
cpe:2.3:a:wireshark:wireshark:2.0.0:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.1
cpe:2.3:a:wireshark:wireshark:2.0.1:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.2
cpe:2.3:a:wireshark:wireshark:2.0.2:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.3
cpe:2.3:a:wireshark:wireshark:2.0.3:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.4
cpe:2.3:a:wireshark:wireshark:2.0.4:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.5
cpe:2.3:a:wireshark:wireshark:2.0.5:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.2.0
cpe:2.3:a:wireshark:wireshark:2.2.0:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.2.1
cpe:2.3:a:wireshark:wireshark:2.2.1:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.6
cpe:2.3:a:wireshark:wireshark:2.0.6:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.7
cpe:2.3:a:wireshark:wireshark:2.0.7:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2016-9376

Exploit prediction scoring system (EPSS) score for CVE-2016-9376

CVSS scores for CVE-2016-9376

CWE ids for CVE-2016-9376

References for CVE-2016-9376

Products affected by CVE-2016-9376