Wireshark DIAMETER Dissector Denial of Service

2012-05-24 09:15:05

Source: http://www.securityfocus.com/bid/53652/info

Wireshark is prone to a denial-of-service vulnerability because it fails to properly allocate memory.

Successful exploits may allow attacker to crash the affected application, denying service to legitimate users.

Wireshark 1.4.0 to 1.4.12 and 1.6.0 to 1.6.7 are vulnerable.

PoC:
http://www.exploit-db.com/sploits/18918.pcap

Fixes

No fixes

In order to submit a new fix you need to be registered.