Design/Logic Flaw

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LTP dissector and other dissectors could consume excessive memory. This was addressed in epan/tvbuff.c by rejecting negative lengths...

CVE-2013-1585

Wireshark is affected by CVE-2013-1585 due to improper validation of certain length values in the MS-MMC dissector code path (epan/tvbuff.c), allowing remote attackers to crash the application via malformed packets. Affected lines indicate vulnerable releases are Wireshark 1.6.x prior to 1.6.13 a...