CVE-2017-7700

Impact:
Moderate
Public Date:
2017-04-12
Bugzilla:
1441971: CVE-2017-7700 wireshark: NetScaler file parser infinite loop (wnpa-sec-2017-14)

The MITRE CVE dictionary describes this issue as:

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring a nonzero record size.

Find out more about CVE-2017-7700 from the MITRE CVE dictionary dictionary and NIST NVD.

CVSS v3 metrics

NOTE: The following CVSS v3 metrics and score provided are preliminary and subject to review.

CVSS3 Base Score 5.9
CVSS3 Base Metrics CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity High
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity Impact None
Availability Impact High

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 7 wireshark Will not fix
Red Hat Enterprise Linux 6 wireshark Will not fix

External References

Last Modified