CVE-2015-2191: Integer Overflow
Published Mar 8, 2015
·Updated
Integer overflow in the dissecttnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted length field in a packet.
Affected Software
22 affected components
Debian Debian Linux=7.0
Debian Debian Linux=8.0
Mageia Mageia=4.0
Wireshark Wireshark=1.10.0
Wireshark Wireshark=1.10.1
Wireshark Wireshark=1.10.2
Wireshark Wireshark=1.10.3
Wireshark Wireshark=1.10.4
Wireshark Wireshark=1.10.5
Wireshark Wireshark=1.10.6
Wireshark Wireshark=1.10.7
Wireshark Wireshark=1.10.8
Wireshark Wireshark=1.10.9
Wireshark Wireshark=1.10.10
Wireshark Wireshark=1.10.11
Wireshark Wireshark=1.10.12
Wireshark Wireshark=1.12.0
Wireshark Wireshark=1.12.1
Wireshark Wireshark=1.12.2
Wireshark Wireshark=1.12.3
openSUSE openSUSE=13.1
openSUSE openSUSE=13.2
Remediation
Event History
Mar 8, 2015
CVE Published
via MITRE·02:00 AM
Data Sourced
via MITRE·02:00 AM
Description
Frequently Asked Questions
1
What is the severity of CVE-2015-2191?
CVE-2015-2191 has been classified as a high severity vulnerability due to its potential to cause denial of service.
2
How do I fix CVE-2015-2191?
To fix CVE-2015-2191, update Wireshark to version 1.10.13 or 1.12.4 or later.
3
Which versions of Wireshark are affected by CVE-2015-2191?
CVE-2015-2191 affects Wireshark versions 1.10.x prior to 1.10.13 and 1.12.x prior to 1.12.4.
4
Can CVE-2015-2191 be exploited remotely?
Yes, CVE-2015-2191 can be exploited remotely through crafted packets.
5
What types of systems are impacted by CVE-2015-2191?
CVE-2015-2191 impacts systems running specific versions of Wireshark on Debian, Mageia, and openSUSE.