Launchpad.net

CVE 2010-4300

Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an LDSS packet with a long digest line that triggers memory corruption.

Related bugs and status

CVE-2010-4300 (Candidate) is related to these bugs:

Bug #682549: CVE-2010-4300 and CVE-2010-3445

		In	Importance	Status
682549	CVE-2010-4300 and CVE-2010-3445	wireshark (Ubuntu)	Medium	Fix Released
682549	CVE-2010-4300 and CVE-2010-3445	wireshark (Ubuntu Maverick)	Medium	Fix Released
682549	CVE-2010-4300 and CVE-2010-3445	wireshark (Ubuntu Lucid)	Medium	Won't Fix

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.wireshark.o...
CONFIRM: https://bugs.wireshark...
OSVDB: 69354
SECUNIA: 42290
VUPEN: ADV-2010-3038
CONFIRM: http://www.wireshark.o...
MANDRIVA: MDVSA-2010:242
REDHAT: RHSA-2010:0924
BID: 44987
SECTRACK: 1024762
EXPLOIT-DB: 15676
SECUNIA: 42411
VUPEN: ADV-2010-3068
VUPEN: ADV-2010-3093
SUSE: SUSE-SR:2011:001
SECUNIA: 42877
VUPEN: ADV-2011-0076
SUSE: SUSE-SR:2011:002
SECUNIA: 43068
VUPEN: ADV-2011-0212
CONFIRM: http://blogs.sun.com/s...
VUPEN: ADV-2011-0404
OVAL: oval:org.mitre.oval:de...