Skip to main content

Wireshark RTP Dissector Crash Vulnerability

Last Update Date: 24 Apr 2014 10:34 Release Date: 24 Apr 2014 3821 Views

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

TYPE: Security Software & Appliance

A vulnerability has been identified in Wireshark, which can be exploited to cause denial of service.

 

Wireshark can be made to crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.


Impact

  • Denial of Service

System / Technologies affected

  • Versions 1.10.0 to 1.10.6

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade to Wireshark 1.10.7 or later.

Vulnerability Identifier


Source


Related Link