Description
Multiple vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet.
Technical details
These vulnerabilities related to multiple dissectors:
- epan/dissectors/packet-ipmi-trace.c in the IPMI trace dissector does not properly consider whether constant string
- Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector
- epan/dissectors/packet-umts_fp.c in the UMTS FP dissector does not properly handle memory allocation
- epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector does not restrict number of channels
- epan/dissectors/packet-h225.c in the H.225 dissector calls snprintf with one of its input buffers as the output buffer
- epan/dissectors/packet-qnet6.c in the QNX6 QNET dissector mishandles MAC address data
Original advisories
Related products
CVE list
- CVE-2016-7180 warning
- CVE-2016-7179 warning
- CVE-2016-7178 warning
- CVE-2016-7177 warning
- CVE-2016-7176 warning
- CVE-2016-7175 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!