Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-jnkw-vxes-muen
Vulnerability ID VCID-jnkw-vxes-muen
Aliases CVE-2008-4682
Summary Multiple vulnerabilities have been discovered in Wireshark which allow for Denial of Service or remote code execution.
Status Published
Exploitability 2.0
Weighted Severity 4.5
Risk 9.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-20 Improper Input Validation
System Score Found at
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
epss 0.0601 https://api.first.org/data/v1/epss?cve=CVE-2008-4682
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2008-4682
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4682.json
https://api.first.org/data/v1/epss?cve=CVE-2008-4682
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2926
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4682
http://secunia.com/advisories/32355
http://secunia.com/advisories/34144
http://securityreason.com/securityalert/4462
http://securitytracker.com/id?1021069
https://exchange.xforce.ibmcloud.com/vulnerabilities/45505
http://shinnok.evonet.ro/vulns_html/wireshark.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10955
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14705
http://support.avaya.com/elmodocs2/security/ASA-2009-082.htm
https://www.exploit-db.com/exploits/6622
http://wiki.rpath.com/Advisories:rPSA-2008-0336
http://www.mandriva.com/security/advisories?name=MDVSA-2008:215
http://www.redhat.com/support/errata/RHSA-2009-0313.html
http://www.securityfocus.com/archive/1/499154/100/0/threaded
http://www.securityfocus.com/bid/31468
http://www.securityfocus.com/bid/31838
http://www.vupen.com/english/advisories/2008/2872
http://www.wireshark.org/security/wnpa-sec-2008-06.html
468169 https://bugzilla.redhat.com/show_bug.cgi?id=468169
503589 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=503589
cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:wireshark:wireshark:1.0.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wireshark:wireshark:1.0.3:*:*:*:*:*:*:*
CVE-2008-4682 https://nvd.nist.gov/vuln/detail/CVE-2008-4682
GLSA-200906-05 https://security.gentoo.org/glsa/200906-05
OSVDB-49342;CVE-2008-4682 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/6622.txt
RHSA-2009:0313 https://access.redhat.com/errata/RHSA-2009:0313
Data source Exploit-DB
Date added Sept. 28, 2008
Description Wireshark 1.0.x - '.ncf' Packet Capture Local Denial of Service
Ransomware campaign use Known
Source publication date Sept. 29, 2008
Exploit type dos
Platform multiple
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2008-4682
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.90655
EPSS Score 0.0601
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:01:44.072528+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200906-05 38.0.0