Launchpad CVE tracker

CVE 2007-0459

packet-tcp.c in the TCP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.4 allows remote attackers to cause a denial of service (application crash or hang) via fragmented HTTP packets.

Related bugs and status

CVE-2007-0459 (Candidate) is related to these bugs:

Bug #86908: wireshark 0.99.4 has security vulnerabilities (upgrade to wireshark 0.99.5)

		In	Importance	Status
86908	wireshark 0.99.4 has security vulnerabilities (upgrade to wireshark 0.99.5)	wireshark (Ubuntu)	Undecided	Fix Released
86908	wireshark 0.99.4 has security vulnerabilities (upgrade to wireshark 0.99.5)	wireshark (Ubuntu Edgy)	Undecided	Won't Fix
86908	wireshark 0.99.4 has security vulnerabilities (upgrade to wireshark 0.99.5)	wireshark (Ubuntu Feisty)	Undecided	Fix Released

Bug #132915: WireShark versions prior to 0.99.6 vulnerability

		In	Importance	Status
132915	WireShark versions prior to 0.99.6 vulnerability	wireshark (Ubuntu)	High	Fix Released
132915	WireShark versions prior to 0.99.6 vulnerability	wireshark (Ubuntu Edgy)	High	Fix Released
132915	WireShark versions prior to 0.99.6 vulnerability	wireshark (Ubuntu Feisty)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2007-0459

References