CVE-2010-3445

EPSS 1.5%

wireshark - denial of service

Published: 11/26/2010Modified: 4/28/2026

Also known as:DEBIAN-CVE-2010-3445

Description

Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a long string in an unknown ASN.1/BER encoded packet, as demonstrated using SNMP.

Affected packages (2)

Debian/wiresharkfrom 0, < 1.2.11-3
Debian/wiresharkfrom 0, < 1.0.2-3+lenny11

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-3445