CVE-2016-5359

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-5359
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-5359.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-5359
Downstream
Related
Published
2016-08-07T16:59:14.550Z
Modified
2026-02-09T05:01:00.104524Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 1.12.x before 1.12.12 mishandles offsets, which allows remote attackers to cause a denial of service (integer overflow and infinite loop) via a crafted packet.

References

Affected packages

Git / gitlab.com/wireshark/wireshark

Affected ranges

Type
GIT
Repo
https://gitlab.com/wireshark/wireshark
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
01b65bf3a8e3d2f856471b0bb5a7e38dabf815f3
Last affected
4fab41a1f0e14e9124ea6a61e7bae42e95599495
Last affected
5819e5b13c0bbd224fde5a4c900ad8e22f09b4cc
Last affected
5b6e543233efc5c8abfd8edd6fbf717f7ec3f632
Last affected
7f56a20e1e701216b3c31c3540022f604978b1e3
Last affected
7fc8978399fe7fe20bac8f2ef5f2f15eef4c4698
Last affected
898fa22ad39718f1a7cb9976f61a4f85e4e72b05
Last affected
b4861da48fa018a82f674161b7335c2e269d33ec
Last affected
bb3e9a0fc7c94f7bde5b62aedfee06f748c1d37f
Last affected
c74c83c36c90e874c0aea0d98a84396852713d1e
Last affected
ee1fce6fb32c55cf1af2fe1778f67eb77c0ff8d4
Last affected
fadb421970e5e2103ebd15ca1e5d19b89d20efa0

Affected versions

Other
backups/ethereal@18706
ethereal-0-3-15
start
ethereal-0.*
ethereal-0.3.15
v1.*
v1.11.0
v1.11.0-rc1
v1.11.1
v1.11.1-rc1
v1.11.2
v1.11.2-rc1
v1.11.3
v1.11.3-rc1
v1.11.4-rc1
v1.12.0
v1.12.0-rc1
v1.12.0-rc2
v1.12.0rc0
v1.12.0rc3
v1.12.1
wireshark-1.*
wireshark-1.11.3
wireshark-1.12.0
wireshark-1.12.1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-5359.json"