2 matches found
Wireshark LWRES Dissector getaddrsbyname Buffer Overflow - Ver2 (CVE-2010-0304)
A buffer overflow vulnerability has been reported in Wireshark. The vulnerability is due to insufficient boundary checking in the getaddrsbyname method. A remote attacker may exploit this vulnerability by sending an overly long string parameter to this method. Successful exploitation would allow...
wireshark: crash in LWRES dissector
Multiple buffer overflows in the LWRES dissector in Wireshark 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allow remote attackers to cause a denial of service crash via a malformed packet, as demonstrated using a stack-based buffer overflow to the dissectgetaddrsbynamerequest function...