CVE-2008-3141

Upstream information

CVE-2008-3141 at MITRE

Description

Unspecified vulnerability in the RMI dissector in Wireshark (formerly Ethereal) 0.9.5 through 1.0.0 allows remote attackers to read system memory via unspecified vectors.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	4.9
Vector	AV:L/AC:L/Au:N/C:C/I:N/A:N
Access Vector	Local
Access Complexity	Low
Authentication	None
Confidentiality Impact	Complete
Integrity Impact	None
Availability Impact	None

SUSE Bugzilla entry: 405266 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SR:2008:017, published Fri, 29 Aug 2008 14:00:00 +0000

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise SDK 10 SP2	`ethereal-devel >= 0.10.14-16.26`	core9.s390x sled10-sp2.x86-64 core9.ia64 sle10-sp2-sdk.ia64 sle10-sp1-sdk.s390x sle10-sp1-sdk.x86-64 core9.x86-64 sles10.x86 sle10-sp1-sdk.ia64 sles10.s390x sled10.x86 sle10-sp2-sdk.ppc sled10.x86-64 sle10-sp1-sdk.ppc sles10.x86-64 sle10-sp2-sdk.x86-64 sle10-sp1-sdk.x86 core9.x86 sles10.ppc sles10-sp2.ppc sles9-nld.x86 sles9-oes.x86 sles10.ia64 core9.ppc sles10-sp2.x86 sle10-sp2-sdk.s390x sles10-sp2.x86-64 sles10-sp2.ia64 sled10-sp2.x86 sle10-sp2-sdk.x86 sles9-nld.x86-64 sles9-nlpos.x86 sles10-sp2.s390x core9.s390 ZYPP Patch Nr: 5520
Novell Linux Desktop 9 SDK for x86 Novell Linux Desktop 9 SDK for x86_64 Open Enterprise Server	`ethereal >= 0.10.13-2.34`	core9.s390x sled10-sp2.x86-64 core9.ia64 sle10-sp2-sdk.ia64 sle10-sp1-sdk.s390x sle10-sp1-sdk.x86-64 core9.x86-64 sles10.x86 sle10-sp1-sdk.ia64 sles10.s390x sled10.x86 sle10-sp2-sdk.ppc sled10.x86-64 sle10-sp1-sdk.ppc sles10.x86-64 sle10-sp2-sdk.x86-64 sle10-sp1-sdk.x86 core9.x86 sles10.ppc sles10-sp2.ppc sles9-nld.x86 sles9-oes.x86 sles10.ia64 core9.ppc sles10-sp2.x86 sle10-sp2-sdk.s390x sles10-sp2.x86-64 sles10-sp2.ia64 sled10-sp2.x86 sle10-sp2-sdk.x86 sles9-nld.x86-64 sles9-nlpos.x86 sles10-sp2.s390x core9.s390 ZYPP Patch Nr: 5520
openSUSE 11.0	`wireshark-debuginfo >= 1.0.0-17.2` `wireshark-debugsource >= 1.0.0-17.2`
openSUSE 11.0	`wireshark >= 1.0.0-17.2` `wireshark-devel >= 1.0.0-17.2`