Wireshark DIAMETER Dissector Denial of Service
| EKU-ID: 2183 | CVE: | OSVDB-ID: |
| Author: Wireshark | Published: 2012-05-25 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 2183 | CVE: | OSVDB-ID: |
| Author: Wireshark | Published: 2012-05-25 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
Source: http://www.securityfocus.com/bid/53652/info
Wireshark is prone to a denial-of-service vulnerability because it fails to properly allocate memory.
Successful exploits may allow attacker to crash the affected application, denying service to legitimate users.
Wireshark 1.4.0 to 1.4.12 and 1.6.0 to 1.6.7 are vulnerable.
PoC:
http://www.exploit-db.com/sploits/18918.pcap