KLA10961Denial of service vulnerability in Wireshark

2017-02-17T00:00:00
ID KLA10961
Type kaspersky
Reporter Kaspersky Lab
Modified 2020-05-22T00:00:00

Description

Detect date:

02/17/2017

Severity:

Critical

Description:

An infinite loop and memory exhaustion vulnerability was found in Wireshark versions 2.2.4 and earlier. By exploiting this vulnerability malicious users can possibly cause a denial of service. This vulnerability can be exploited remotely via a specially designed or malformed STANAG 4607 capture.

Affected products:

Wireshark 2.0.0 to 2.0.10
Wireshark 2.2.0 to 2.2.4

Solution:

Update to the latest version
Download Wireshark

Original advisories:

wnpa-sec-2017-06

Impacts:

DoS

Related products:

Wireshark

CVE-IDS:

CVE-2017-60147.8Critical