{
  "modified": "2025-08-09T19:01:28Z",
  "published": "2009-10-30T20:30:00Z",
  "id": "CVE-2009-3551",
  "details": "Off-by-one error in the dissect_negprot_response function in packet-smb.c in the SMB dissector in Wireshark 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace.  NOTE: some of these details are obtained from third party information.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/37175"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/37409"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.vupen.com/english/advisories/2009/3061"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.wireshark.org/security/wnpa-sec-2009-07.html"
    },
    {
      "type": "FIX",
      "url": "http://www.securityfocus.com/bid/36846"
    },
    {
      "type": "FIX",
      "url": "http://www.vupen.com/english/advisories/2009/3061"
    },
    {
      "type": "FIX",
      "url": "http://www.wireshark.org/docs/relnotes/wireshark-1.2.3.html"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54018"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6049"
    }
  ]
}