Wireshark – ‘call_dissector()’ Null Pointer Dereference Denial of Service - 体验盒子

作者： Wireshark

日期： 2012-04-19

类别：

dos

平台：

multiple

来源：https://www.exploit-db.com/exploits/18758/

source: https://www.securityfocus.com/bid/52735/info

Wireshark is prone to a remote denial-of-service vulnerability caused by a NULL-pointer-dereference error.

An attacker can exploit this issue to crash the application, resulting in a denial-of-service condition.

The following Wireshark versions are vulnerable:

1.4.0 through 1.4.11
1.6.0 through 1.6.5 

PoC: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/18758.pcap