Wireshark LDSS Dissector Buffer Overflow Vulnerability - [CVE: 2010-4300]

2010-12-04 09:16:35

Source: http://www.securityfocus.com/bid/44987/info

Wireshark is prone to a buffer-overflow vulnerability.

Exploiting this issue may allow attackers to crash the application and deny service to legitimate users. Attackers may also execute arbitrary code in the context of vulnerable users running the application.

This issue affects Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1.

PoC: https://www.exploit-db.com/sploits/15676_pcap.zip

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.