Wireshark LDSS Dissector Buffer Overflow Vulnerability

2010-12-04T00:00:00
ID EDB-ID:15676
Type exploitdb
Reporter Nephi Johnson
Modified 2010-12-04T00:00:00

Description

Wireshark LDSS Dissector Buffer Overflow Vulnerability. CVE-2010-4300. Dos exploits for multiple platform

                                        
                                            Source: http://www.securityfocus.com/bid/44987/info

Wireshark is prone to a buffer-overflow vulnerability.

Exploiting this issue may allow attackers to crash the application and deny service to legitimate users. Attackers may also execute arbitrary code in the context of vulnerable users running the application.

This issue affects Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1.

PoC: https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/15676-pcap.zip