Wireshark Multiple Dissector Denial of Service Vulnerabilities
| EKU-ID: 2184 | CVE: | OSVDB-ID: |
| Author: Laurent Butti | Published: 2012-05-25 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 2184 | CVE: | OSVDB-ID: |
| Author: Laurent Butti | Published: 2012-05-25 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
Source: http://www.securityfocus.com/bid/53651/info
Wireshark is prone to multiple denial-of-service vulnerabilities.
An attacker can exploit these issues to crash the affected application, denying service to legitimate users.
Wireshark versions 1.6.0 through 1.6.7 and versions 1.4.0 through 1.4.12 are vulnerable.
PoC:
http://www.exploit-db.com/sploits/18919-1.pcap
http://www.exploit-db.com/sploits/18919-2.pcap
http://www.exploit-db.com/sploits/18919-3.pcap
http://www.exploit-db.com/sploits/18919-4.pcap
http://www.exploit-db.com/sploits/18919-5.pcap
http://www.exploit-db.com/sploits/18919-6.pcap
http://www.exploit-db.com/sploits/18919-7.pcap
http://www.exploit-db.com/sploits/18919-8.pcap