CVE-2012-2393

Name of the Vulnerable Software and Affected Versions Wireshark versions 1.4.x through 1.4.12 Wireshark versions 1.6.x through 1.6.7

Description The issue is related to the DIAMETER dissector in Wireshark, where it fails to properly construct certain array data structures. This can be exploited by remote attackers to cause a denial of service, resulting in an application crash. The attack can be triggered via a crafted packet that leads to incorrect memory allocation.

Recommendations For Wireshark versions 1.4.x through 1.4.12, update to version 1.4.13 or later. For Wireshark versions 1.6.x through 1.6.7, update to version 1.6.8 or later.