4 matches found
CVE-2014-4020
The dissectframe function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent an error condition, which allows remote attackers to cause a denial of service...
Design/Logic Flaw
The dissectframe function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent an error condition, which allows remote attackers to cause a denial of service...
CVE-2014-4020
Wireshark 1.10.x before 1.10.8 is vulnerable in the Frame Metadissector (dissect_frame in epan/dissectors/packet-frame.c): it treats a negative integer as a length value, ignoring the error condition, enabling a remote attacker to crash the application (DoS). A fix is to upgrade to Wireshark 1.10...
CVE-2014-4020
The dissectframe function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent an error condition, which allows remote attackers to cause a denial of service...