virus logo Intrusion Prevention

Wireshark.SigComp.UDVM.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a buffer-overflow vulnerability in Wireshark.
The vulnerability is caused by an off-by-one error in the SigComp UDVM dissector. It could be exploited to execute arbitrary code.

affected-products-logoAffected Products

Wireshark 1.2.9
Wireshark 1.2.8
Wireshark 1.2.7
Wireshark 1.2.6
Wireshark 1.2.5
Wireshark 1.2.4
Wireshark 1.2.3
Wireshark 1.2.2
Wireshark 1.2.1
Wireshark 1.2
Wireshark 1.0.14
Wireshark 1.0.13
Wireshark 1.0.12
Wireshark 1.0.11
Wireshark 1.0.10
Wireshark 1.0.9
Wireshark 1.0.8
Wireshark 1.0.7
Wireshark 1.0.6
Wireshark 1.0.5
Wireshark 1.0.4
Wireshark 1.0.3
Wireshark 1.0.2
Wireshark 1.0.1
Wireshark 1.0
Wireshark 0.99.8
Wireshark 0.99.7
Wireshark 0.99.6
Wireshark 0.99.5
Wireshark 0.99.4
Wireshark 0.99.3
Wireshark 0.99.2
Wireshark 0.99.1
Wireshark 0.99
Wireshark 0.10.13
Wireshark 0.10.4
Wireshark 0.10
Wireshark 0.9.10
Wireshark 0.9.6
Wireshark 0.9.5
Wireshark 0.9.2
Wireshark 0.8.20

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to Wireshark 1.2.10 or above.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 25474
Created May 06, 2011
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2010-2287
Exploit Prediction Score 51.63%
Default Action drop
Active
Affected OS Windows, Linux
Affected App Other