CVE-2015-3182

Name of the Vulnerable Software and Affected Versions Wireshark versions 1.10.12 through 1.10.14

Description The issue is related to the DECnet NSP/RT dissector in Wireshark, where it mishandles a certain strdup return value. This allows remote attackers to cause a denial of service, resulting in an application crash, via a crafted packet. No information is provided about the estimated number of potentially affected devices or real-world incidents.

Recommendations For Wireshark versions 1.10.12 through 1.10.14, consider updating to a version where this issue is fixed, as the current version mishandles the strdup return value, leading to potential crashes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.