Wireshark - LDSS Dissector Buffer Overflow

EDB-ID:

15676


Platform:

Multiple

Published:

2010-12-04

source: http://www.securityfocus.com/bid/44987/info

Wireshark is prone to a buffer-overflow vulnerability.

Exploiting this issue may allow attackers to crash the application and deny service to legitimate users. Attackers may also execute arbitrary code in the context of vulnerable users running the application.

This issue affects Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1.

PoC: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/15676-pcap.zip