CVE-2008-3146

EPSS 1.8%

wireshark - several vulnerabilities

Published: 9/2/2008Modified: 4/28/2026

Description

Multiple buffer overflows in packet_ncp2222.inc in Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted NCP packet that causes an invalid pointer to be used.

Affected packages (2)

Debian/wiresharkfrom 0, < 1.0.3-1
Debian/wiresharkfrom 0, < 1.0.2-3+lenny1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-3146