CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-9617

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.6%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/99087
http://www.securitytracker.com/id/1038706
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13799
http://www.securityfocus.com/bid/99087
http://www.securitytracker.com/id/1038706
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13799

Products affected by CVE-2017-9617

Wireshark » Wireshark » Version: 2.2.7

cpe:2.3:a:wireshark:wireshark:2.2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9617

Products

Pricing

Contact Us