KLA11311
Multiple DoS vulnerabilities in Wireshark
Updated: 05/22/2020
Detect date
?
08/29/2018
Severity
?
Warning
Description

Multiple serious vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. An unspecified vulnerability in the Bluetooth AVDTP dissector can be exploited remotely via malformed packet trace file to cause denial of service;
  2. An unspecified vulnerability in the Bluetooth Attribute Protocol dissector can be exploited remotely via malformed packet trace file to cause denial of service;
  3. An unspecified vulnerability in the Radiotap dissector can be exploited remotely via malformed packet trace file to cause denial of service.
Affected products

Wireshark 2.6.x earlier than 2.6.3
Wireshark 2.4.x earlier than 2.4.9
Wireshark 2.2.x earlier than 2.2.17

Solution

Update to the latest version
Get Wireshark

Original advisories

wnpa-sec-2018-44
wnpa-sec-2018-45
wnpa-sec-2018-46

Impacts
?
DoS 
[?]
Related products
Wireshark
CVE-IDS
?
CVE-2018-160585.0Critical
CVE-2018-160567.5Critical
CVE-2018-160577.5Critical