Main Vulnerability Database Exploits ID:3661 - Exploit for Buffer overflow in Wireshark - CVE-2012-2393

ID:3661 - Exploit for Buffer overflow in Wireshark - CVE-2012-2393

Published: July 29, 2020

Vulnerability identifier: #VU32795

Vulnerability risk: Low

CVE-ID: CVE-2012-2393

CWE-ID: CWE-119

Exploitation vector: Adjecent network

Vulnerable software:
Wireshark

Link to public exploit:

https://www.exploit-db.com/exploits/18918/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 does not properly construct certain array data structures, which allows remote attackers to cause a denial of service (application crash) via a crafted packet that triggers incorrect memory allocation.

Remediation

Install update from vendor's website.

ID:3661 - Exploit for Buffer overflow in Wireshark - CVE-2012-2393

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human