KLA12080
DoS vulnerabilities in Wireshark

Обновлено: 16/02/2021
Дата обнаружения
21/10/2020
Уровень угрозы
Warning
Описание

DoS vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. DoS vulnerability in the FBZERO protocol dissector can be exploited via special crafted file to cause denial of service.
  2. DoS vulnerability in the GQUIC protocol dissector can be exploited via special crafted file to cause denial of service.
Пораженные продукты

Wireshark 3.2.x earlier than 3.2.8
Wireshark 3.4.0 earlier than 3.4.0

Решение

Update to the latest version
Download Wireshark

Первичный источник обнаружения
wnpa-sec-2020-14 · FBZERO dissector crash
wnpa-sec-2020-15 · GQUIC dissector crash
Оказываемое влияние
?
DoS 
[?]
Связанные продукты
Wireshark
CVE-IDS
CVE-2020-265755.0Critical
CVE-2020-280305.0Critical