Wireshark - DIAMETER Dissector Denial of Service

EDB-ID:

18918


Author:

Wireshark

Type:

dos


Platform:

Multiple

Date:

2012-05-24


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux , the course required to become an Offensive Security Certified Professional (OSCP)

GET CERTIFIED

source: https://www.securityfocus.com/bid/53652/info

Wireshark is prone to a denial-of-service vulnerability because it fails to properly allocate memory. 

Successful exploits may allow attacker to crash the affected application, denying service to legitimate users. 

Wireshark 1.4.0 to 1.4.12 and 1.6.0 to 1.6.7 are vulnerable.

PoC:
https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/18918.pcap