Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Wireshark 1.4.0 IKE Denial Of Service

🗓️ 12 Jul 2011 00:00:00Reported by nipc.org.cnType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 30 Views

Wireshark 1.4.0 IKE Denial of Service with Malformed Packe

Code
`Wireshark 1.4.0 Malformed IKE Packet Denial of Service  
  
------------------------------------------------------------------  
I. Summary  
  
A flaw has been identified in Wireshark 1.4.0 when send a specific malformed IKE packet that will cause a denial of service .  
  
------------------------------------------------------------------  
II. Description  
  
Using PROTOS Test-Suite c09-isakmp(https://www.ee.oulu.fi/research/ouspg/PROTOS_Test-Suite_c09-isakmp),when we run the following command "java -jar c09-isakmp-r1.jar --host 210.77.17.129 --id 210.77.19.130 --secret dgggg --sourceport 34444 --index 3332" ,wireshark will capture the packet index 3332,then clike the field"Type Payload:Identification(5)",a error message will popup ,saying"Gtk-ERROR **:Byte index 6 is off the end of the line aborting...".Then wireshark be forced to close.  
  
  
------------------------------------------------------------------  
III. Impact  
  
Denial of service   
  
------------------------------------------------------------------  
IV. Affected  
  
Wireshark 1.4.0, tested with Windows XP SP2. Previous versions may also be affected due to code reuse.  
  
------------------------------------------------------------------  
V. Solution  
  
Update the software version to 1.5.0 or 1.6.0  
  
------------------------------------------------------------------  
VI. Credit  
  
The penetration test team Of NCNIPC (China) is credited for this vulnerability.  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
12 Jul 2011 00:00Current
7.4High risk
Vulners AI Score7.4
wiresharkdenial of servicemalformed packetvulnerabilityupdatencnipc (china)
30