PT-2012-6247 · Wireshark · Wireshark
Publicado
2012-12-05
·
Atualizado
2017-09-19
·
CVE-2012-6058
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Wireshark versions 1.6.x through 1.6.11
Wireshark versions 1.8.x through 1.8.3
Description
The issue is related to an integer overflow in the dissect icmpv6 function, which can be exploited by remote attackers to cause a denial of service, resulting in an infinite loop. This can be achieved by sending a crafted Number of Sources value.
Recommendations
For Wireshark versions 1.6.x through 1.6.11, update to version 1.6.12 or later.
For Wireshark versions 1.8.x through 1.8.3, update to version 1.8.4 or later.
Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Wireshark