Unrated severityNVD Advisory· Published Mar 3, 2011· Updated Jun 16, 2026
CVE-2011-1140
CVE-2011-1140
Description
Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
39cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:*+ 37 more
- cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.12:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.14:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.15:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.16:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.11:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.12:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.13:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.4.3:*:*:*:*:*:*:*
- (no CPE)range: 1.0.x, 1.2.0-1.2.14, 1.4.0-1.4.3
Patches
Vulnerability mechanics
References
25- anonsvn.wireshark.org/viewvcnvdPatch
- www.wireshark.org/docs/relnotes/wireshark-1.2.15.htmlnvdPatch
- www.wireshark.org/docs/relnotes/wireshark-1.4.4.htmlnvdPatch
- bugs.wireshark.org/bugzilla/show_bug.cginvdExploit
- www.wireshark.org/security/wnpa-sec-2011-03.htmlnvdVendor Advisory
- www.wireshark.org/security/wnpa-sec-2011-04.htmlnvdVendor Advisory
- www.kb.cert.org/vuls/id/215900nvdUS Government Resource
- lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.htmlnvd
- secunia.com/advisories/43759nvd
- secunia.com/advisories/43795nvd
- secunia.com/advisories/43821nvd
- secunia.com/advisories/44169nvd
- www.debian.org/security/2011/dsa-2201nvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2011-0369.htmlnvd
- www.redhat.com/support/errata/RHSA-2011-0370.htmlnvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2011/0622nvd
- www.vupen.com/english/advisories/2011/0626nvd
- www.vupen.com/english/advisories/2011/0719nvd
- www.vupen.com/english/advisories/2011/0747nvd
- hermes.opensuse.org/messages/8086844nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14715nvd
News mentions
0No linked articles in our index yet.