Multiple vulnerabilities in Wireshark

Описание

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause a denial of service.

Below is a complete list of vulnerabilities:

1. Buffer overflow vulnerability in the IrCOMM dissector can be exploited remotely via a specially designed packet, which is injected onto the wire, or by convincing a user to handle a specially designed packet trace file to cause a denial of service;
2. An infinite loop in the MSDP dissector can be exploited remotely via a specially designed packet, which is injected onto the wire, or by convincing a user to handle a specially designed packet trace file to cause a denial of service.

Первичный источник обнаружения

• wnpa-sec-2017-38
  wnpa-sec-2017-41
  

Связанные продукты

• Wireshark

Список CVE

• CVE-2017-13765
  warning
• CVE-2017-13767
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com