Multiple vulnerabilities in Wireshark

Descripción

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

1. Denial of service vulnerability in RTMPT dissector can be exploited via special crafted packet to cause denial of service.
2. Denial of service vulnerability in CMS dissector can be exploited via special crafted packet to cause denial of service.
3. Denial of service vulnerability in multiple dissectors can be exploited via special crafted packet to cause denial of service.
4. Denial of service vulnerability in CSN.1 dissector can be exploited via special crafted packet to cause denial of service.
5. Denial of service vulnerability in PVFS dissector can be exploited via special crafted packet to cause denial of service.

Notas informativas originales

• RTMPT dissector infinite loop

• Large loops in multiple dissectors
• PVFS dissector crash
• CSN.1 dissector crash
• CMS dissector crash

Explotación

Public exploits exist for this vulnerability.

Productos relacionados

• Wireshark

Lista CVE

• CVE-2022-0586
  critical
• CVE-2022-0581
  critical
• CVE-2022-0585
  high
• CVE-2022-0582
  critical
• CVE-2022-0583
  critical

Leer más

Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com