Vulnerabilities Threats

English Russian Japanese LatAm Türkiye Brasil France Český Deutschland

KLA12081
DoS vulnerabilities in Wireshark

Updated: 02/16/2021
Detect date
?
 12/09/2020
Severity
?
 Warning
Description

DoSvulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. DoS vulnerability in the Kafka dissector can be exploited via special crafted file to cause denial of service.
  2. DoS vulnerability in dissectors can be exploited via special crafted file to cause denial of service.
  3. DoS vulnerability in the RTPS dissector can be exploited via special crafted file to cause denial of service.
  4. DoS vulnerability in the USB HID and possibly other dissectors can be exploited via special crafted file to cause denial of service.
Affected products

Wireshark 3.2.x earlier than 3.2.9
Wireshark 3.4.x earlier than 3.4.1
Solution

Update to the latest version
Download Wireshark
Original advisories

wnpa-sec-2020-16 · Kafka dissector memory leak
wnpa-sec-2020-19 · Multiple dissector memory leak
wnpa-sec-2020-18 · RTPS dissector memory leak
wnpa-sec-2020-17 · USB HID dissector crash
Impacts
?
DoS 
[?]
Related products
 Wireshark
CVE-IDS
?
CVE-2020-264185.0Critical
CVE-2020-264195.0Critical
CVE-2020-264205.0Critical
CVE-2020-264215.0Critical
© 2021 AO Kaspersky Lab. All Rights Reserved.
Privacy Policy

Up