Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2012-5238

EPSS 0.85% · P75
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-5238

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.3 uses incorrect OUI data structures during the decoding of (1) PPP and (2) LCP data, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a malformed packet.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Wireshark PPP解析器拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Wireshark(前称Ethereal)是Wireshark团队开发的一套网络数据包分析软件。该软件的功能是截取网络数据包,并显示出详细的数据以供分析。 Wireshark 1.8.3之前的1.8.x版本中的PPP解析器中的epan/dissectors/packet-ppp.c中存在漏洞,该漏洞源于解码(1)PPP和(2)LCP数据期间使用不正确的OUI数据结构。远程攻击者可利用该漏洞通过恶意的数据包导致拒绝服务(声明失败和应用程序退出)。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2012-5238

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2012-5238

Please Login to view more intelligence information

Same Patch Batch · n/a · 2012-10-04 · 25 CVEs total

CVE-2012-5297Mavili Guestbook edit.asp SQL注入漏洞
CVE-2012-3819Dart PowerTCP WebServer 缓冲区溢出漏洞
CVE-2012-3267HP Network Node Manager i 未明安全漏洞
CVE-2012-5293SAPID CMS 多个PHP远程文件包含漏洞
CVE-2012-5292Atar2b CMS ‘id’参数SQL注入漏洞
CVE-2012-5291Posse Softball Director CMS SQL注入漏洞
CVE-2012-5290EasyWebRealEstate 多个SQL注入漏洞
CVE-2012-5289Plogger ‘id’ 参数SQL注入漏洞
CVE-2012-5288phpMyDirectory SQL注入漏洞
CVE-2012-5300MyStore Xpress Tienda Virtual ‘art_catalogo.php’ SQL注入漏洞
CVE-2012-5299Mavili Guestbook 权限许可和访问控制漏洞
CVE-2012-5298Mavili Guestbook 权限许可和访问控制漏洞
CVE-2012-2999Cerberus FTP Server 多个跨站请求伪造漏洞
CVE-2012-5296Mavili Guestbook 多个跨站脚本漏洞
CVE-2012-5295FuseTalk Forums ‘windowed’参数跨站脚本漏洞
CVE-2012-5294MyStore Xpress Tienda Virtual ‘art_detalle.php’ SQL注入漏洞
CVE-2011-5207WordPress TheCartPress插件跨站脚本漏洞
CVE-2011-5206Rapidleech 跨站脚本漏洞
CVE-2011-5205Rapidleech 跨站脚本漏洞
CVE-2011-5204Akiva WebBoard 信任管理漏洞

Showing top 20 of 25 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2012-5238

No comments yet

Leave a comment