Contact Us
Network Security Consulting Advisories Article

Wireshark 'ERF' data Denial Of Service Vulnerability

Security Info

Bugtraq ID: 52737
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2012-1595
Remote: Yes
Local: No
Published: Mar 27 2012 12:00AM
Updated: Apr 19 2012 04:20PM
Credit: Laurent Butti
Vulnerable: Wireshark Wireshark 1.6.5
Wireshark Wireshark 1.6.4
Wireshark Wireshark 1.6.3
Wireshark Wireshark 1.6.2
Wireshark Wireshark 1.6.1
Wireshark Wireshark 1.6
Wireshark Wireshark 1.4.11
Wireshark Wireshark 1.4.9
Wireshark Wireshark 1.4.8
Wireshark Wireshark 1.4.7
Wireshark Wireshark 1.4.6
Wireshark Wireshark 1.4.5
Wireshark Wireshark 1.4.4
Wireshark Wireshark 1.4.3
Wireshark Wireshark 1.4.2
Wireshark Wireshark 1.4.0
Red Hat Fedora 17
Red Hat Fedora 16
Red Hat Fedora 15
Mandriva Linux Mandrake 2011 x86_64
Mandriva Linux Mandrake 2011
Not Vulnerable: Wireshark Wireshark 1.6.6
Wireshark Wireshark 1.4.12

Security Discussion

Wireshark is prone a denial-of-service vulnerability.

Successful exploits may allow an attacker to crash the affected application, resulting in a denial-of-service condition.

The following versions are vulnerable:

Wireshark versions 1.4.0 through 1.4.11
Wireshark versions 1.6.0 through 1.6.5

Proof of Concept and Security Exploits

A sample pcap file is available. Please see the references for information.

Security Solution(s)

Updates are available. Please see the references for more information.

Mandriva Linux Mandrake 2011 x86_64

Mandriva Linux Mandrake 2011

Security References(s)


Contact Us

Security Penetration Testing

Security Questions

Security Dashboard

Emagined Security Blog featuring Dr. Eugene Schultz
Site Updated March 28, 2015
©2000-2015 Emagined Security
All Rights Reserved

Secure Web Programming
by Vizual Services