PT-2016-7737 · Wireshark+2 · Wireshark+2

Published

2016-11-17

Updated

2024-06-15

CVE-2016-9373

CVSS v3.1

5.9

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Wireshark versions 2.0.0 through 2.0.7 Wireshark versions 2.2.0 through 2.2.1

Description The issue is related to a crash with a use-after-free in the DCERPC dissector, which can be triggered by network traffic or a capture file. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Wireshark versions 2.0.0 through 2.0.7, update to a version where the wmem file scope is used for private strings in the DCERPC dissector. For Wireshark versions 2.2.0 through 2.2.1, update to a version where the wmem file scope is used for private strings in the DCERPC dissector. As a temporary workaround, consider restricting the use of the DCERPC dissector until a patch is available.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2016-2325

CVE-2016-9373

DLA-714-1

DSA-3719-1

MGASA-2016-0391

OPENSUSE-SU-2024:10199-1

SUSE-SU-2017:1174-1

SUSE-SU-2017:1442-1

Affected Products

Alt Linux

Suse

Wireshark

PT-2016-7737 · Wireshark+2 · Wireshark+2

CVE-2016-9373

Weakness Enumeration

Related Identifiers

Affected Products

References · 342