CVE-2013-2481

Name of the Vulnerable Software and Affected Versions Wireshark versions 1.6.x through 1.6.13 Wireshark versions 1.8.x through 1.8.5

Description The issue is related to an integer signedness error in the dissect mount dirpath call function in the Mount dissector. When nfs file name snooping is enabled, remote attackers can cause a denial of service, leading to an application crash, by providing a negative length value.

Recommendations For Wireshark versions 1.6.x through 1.6.13, update to version 1.6.14 or later. For Wireshark versions 1.8.x through 1.8.5, update to version 1.8.6 or later.