CVE-2014-4020

Name of the Vulnerable Software and Affected Versions Wireshark versions 1.10.x through 1.10.7

Description The issue arises from the interpretation of negative integers as length values in the dissect frame function, located in epan/dissectors/packet-frame.c, within the frame metadissector of Wireshark. This condition, which should be treated as an error, allows remote attackers to cause a denial of service, resulting in the application crashing when a specially crafted packet is processed.

Recommendations For Wireshark versions 1.10.x through 1.10.7, update to version 1.10.8 or later to resolve the issue. As a temporary workaround, consider restricting the use of the dissect frame function in the frame metadissector until a patch is applied.