CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-9616

In Wireshark 2.2.7, overly deep mp4 chunks may cause stack exhaustion (uncontrolled recursion) in the dissect_mp4_box function in epan/dissectors/file-mp4.c.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.7%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/99085
http://www.securitytracker.com/id/1038706
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13777
http://www.securityfocus.com/bid/99085
http://www.securitytracker.com/id/1038706
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13777

Products affected by CVE-2017-9616

Wireshark » Wireshark » Version: 2.2.7

cpe:2.3:a:wireshark:wireshark:2.2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9616

Products

Pricing

Contact Us