Vulnerabilities > CVE-2014-5116 - Denial-Of-Service vulnerability in Cairographics Cairo 1.10.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The cairo_image_surface_get_data function in Cairo 1.10.2, as used in GTK+ and Wireshark, allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a large string. <a href="http://cwe.mitre.org/data/definitions/476.html" target="_blank">CWE-476: NULL Pointer Dereference</a>
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Wireshark 1.10.7 - DoS PoC. CVE-2014-5116. Dos exploit for windows platform |
file | exploits/windows/dos/33384.py |
id | EDB-ID:33384 |
last seen | 2016-02-03 |
modified | 2014-05-16 |
platform | windows |
port | |
published | 2014-05-16 |
reporter | Osanda Malith |
source | https://www.exploit-db.com/download/33384/ |
title | Wireshark 1.10.7 - DoS PoC |
type | dos |