Main Vulnerability Database Exploits ID:3659 - Exploit for Buffer overflow in Wireshark - CVE-2012-2394

ID:3659 - Exploit for Buffer overflow in Wireshark - CVE-2012-2394

Published: July 29, 2020

Vulnerability identifier: #VU32796

Vulnerability risk: Low

CVE-ID: CVE-2012-2394

CWE-ID: CWE-119

Exploitation vector: Adjecent network

Vulnerable software:
Wireshark

Link to public exploit:

https://www.exploit-db.com/exploits/18920/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 on the SPARC and Itanium platforms does not properly perform data alignment for a certain structure member, which allows remote attackers to cause a denial of service (application crash) via a (1) ICMP or (2) ICMPv6 Echo Request packet.

Remediation

Install update from vendor's website.

ID:3659 - Exploit for Buffer overflow in Wireshark - CVE-2012-2394

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human