Wireshark Multiple Dissector Denial of Service Vulnerabilities

2012-05-24 09:15:05

Source: http://www.securityfocus.com/bid/53651/info

Wireshark is prone to multiple denial-of-service vulnerabilities.

An attacker can exploit these issues to crash the affected application, denying service to legitimate users.

Wireshark versions 1.6.0 through 1.6.7 and versions 1.4.0 through 1.4.12 are vulnerable.

PoC:
http://www.exploit-db.com/sploits/18919-1.pcap
http://www.exploit-db.com/sploits/18919-2.pcap
http://www.exploit-db.com/sploits/18919-3.pcap
http://www.exploit-db.com/sploits/18919-4.pcap
http://www.exploit-db.com/sploits/18919-5.pcap
http://www.exploit-db.com/sploits/18919-6.pcap
http://www.exploit-db.com/sploits/18919-7.pcap
http://www.exploit-db.com/sploits/18919-8.pcap

Fixes

No fixes

In order to submit a new fix you need to be registered.