ID:4489 - Exploit for Buffer overflow in Wireshark - CVE-2010-4538

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:4489 - Exploit for Buffer overflow in Wireshark - CVE-2010-4538

ID:4489 - Exploit for Buffer overflow in Wireshark - CVE-2010-4538

Published: August 11, 2020


Vulnerability identifier: #VU45487
Vulnerability risk: High
CVE-ID: CVE-2010-4538
CWE-ID: CWE-119
Exploitation vector: Remote access
Vulnerable software:
Wireshark

Link to public exploit:


Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Buffer overflow in the sect_enttec_dmx_da function in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ENTTEC DMX packet with Run Length Encoding (RLE) compression.


Remediation

Install update from vendor's website.