CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-5357

wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.4%

CVSS Severity

CVSS v3 Score 5.9

CVSS v2 Score 4.3

References

Products affected by CVE-2016-5357

Wireshark » Wireshark » Version: 1.12.0

cpe:2.3:a:wireshark:wireshark:1.12.0
Wireshark » Wireshark » Version: 1.12.1

cpe:2.3:a:wireshark:wireshark:1.12.1
Wireshark » Wireshark » Version: 1.12.10

cpe:2.3:a:wireshark:wireshark:1.12.10
Wireshark » Wireshark » Version: 1.12.11

cpe:2.3:a:wireshark:wireshark:1.12.11
Wireshark » Wireshark » Version: 1.12.2

cpe:2.3:a:wireshark:wireshark:1.12.2
Wireshark » Wireshark » Version: 1.12.3

cpe:2.3:a:wireshark:wireshark:1.12.3
Wireshark » Wireshark » Version: 1.12.4

cpe:2.3:a:wireshark:wireshark:1.12.4
Wireshark » Wireshark » Version: 1.12.5

cpe:2.3:a:wireshark:wireshark:1.12.5
Wireshark » Wireshark » Version: 1.12.6

cpe:2.3:a:wireshark:wireshark:1.12.6
Wireshark » Wireshark » Version: 1.12.7

cpe:2.3:a:wireshark:wireshark:1.12.7
Wireshark » Wireshark » Version: 1.12.8

cpe:2.3:a:wireshark:wireshark:1.12.8
Wireshark » Wireshark » Version: 1.12.9

cpe:2.3:a:wireshark:wireshark:1.12.9
Wireshark » Wireshark » Version: 2.0.0

cpe:2.3:a:wireshark:wireshark:2.0.0
Wireshark » Wireshark » Version: 2.0.1

cpe:2.3:a:wireshark:wireshark:2.0.1
Wireshark » Wireshark » Version: 2.0.2

cpe:2.3:a:wireshark:wireshark:2.0.2
Wireshark » Wireshark » Version: 2.0.3

cpe:2.3:a:wireshark:wireshark:2.0.3
Oracle » Solaris » Version: 11.3

cpe:2.3:o:oracle:solaris:11.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-5357

Products

Pricing

Contact Us