CVE-2016-5358 : epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before

epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the packet-header data type, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

Published 2016-08-07 16:59:13

Updated 2025-04-12 10:46:41

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2016-5358

Oracle » Solaris » Version: 11.3
cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.0
cpe:2.3:a:wireshark:wireshark:2.0.0:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.1
cpe:2.3:a:wireshark:wireshark:2.0.1:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.2
cpe:2.3:a:wireshark:wireshark:2.0.2:*:*:*:*:*:*:*
Matching versions
Wireshark » Wireshark » Version: 2.0.3
cpe:2.3:a:wireshark:wireshark:2.0.3:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2016-5358

EPSS FAQ

0.16%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 33 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-5358

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
5.9	MEDIUM	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H	2.2	3.6	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2016-5358

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2016-5358

https://github.com/wireshark/wireshark/commit/2c13e97d656c1c0ac4d76eb9d307664aae0e0cf7

The WTAP_ENCAP_ETHERNET dissector needs to be passed a struct eth_phdr. · wireshark/wireshark@2c13e97 · GitHub
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

Oracle Solaris Bulletin - July 2016
Third Party Advisory

CVEs referencing this url
https://www.wireshark.org/security/wnpa-sec-2016-37.html

Wireshark · wnpa-sec-2016-37 · Ethernet dissector crash
Vendor Advisory
http://www.openwall.com/lists/oss-security/2016/06/09/3

oss-security - Re: CVE Request: wireshark releases
Mailing List

CVEs referencing this url
http://www.securityfocus.com/bid/91140

Wireshark Multiple Denial of Service Vulnerabilities

CVEs referencing this url
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12440

12440 – Buildbot crash output: fuzz-2016-05-14-24004.pcap
Issue Tracking

Jump to

Vulnerability Details : CVE-2016-5358

Products affected by CVE-2016-5358

Exploit prediction scoring system (EPSS) score for CVE-2016-5358

CVSS scores for CVE-2016-5358

CWE ids for CVE-2016-5358

References for CVE-2016-5358