Wireshark - 'call_dissector()' Null Pointer Dereference Denial of Service

EDB-ID:

18758

Author:

Wireshark

Type:

dos

Platform:

Multiple

Published:

2012-04-19

source: http://www.securityfocus.com/bid/52735/info

Wireshark is prone to a remote denial-of-service vulnerability caused by a NULL-pointer-dereference error.

An attacker can exploit this issue to crash the application, resulting in a denial-of-service condition.

The following Wireshark versions are vulnerable:

1.4.0 through 1.4.11
1.6.0 through 1.6.5 

PoC: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/18758.pcap