Description
Multiple serious vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.
Below is a complete list of vulnerabilities:
- An unspecified vulnerability in BGP dissector can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability in ISMP dissector can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability in ASN.1 BER dissector can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability in MMSE dissector can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability in DICOM dissector can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability in Bazaar protocol dissector can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability in HTTP2 protocol dissector can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability in CoAP protocol dissector can be exploited remotely via malformed packet to cause denial of service;
- An unspecified vulnerability in IEEE 802.11 protocol dissector can be exploited remotely via malformed packet to cause denial of service.
Original advisories
- wnpa-sec-2018-35
- wnpa-sec-2018-43
- wnpa-sec-2018-37
- wnpa-sec-2018-38
- wnpa-sec-2018-39
- wnpa-sec-2018-34
- wnpa-sec-2018-40
- wnpa-sec-2018-36
- wnpa-sec-2018-42
Exploitation
Public exploits exist for this vulnerability.
Related products
CVE list
- CVE-2018-14342 critical
- CVE-2018-14344 critical
- CVE-2018-14340 critical
- CVE-2018-14343 critical
- CVE-2018-14339 critical
- CVE-2018-14341 critical
- CVE-2018-14368 critical
- CVE-2018-14369 critical
- CVE-2018-14367 critical
- CVE-2018-14370 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!