Wireshark DOCSIS Dissector DoS Vulnerability

Wireshark issued an update to fix an issue with the DOCSIS (Data Over Cable Service Interface Specification) dissector. It could be exploited by attackers to cause a DoS when processing malformed data, causing a crash of the application.

Affected Products

Wireshark versions 0.9.6 through 1.0.12 Bulletin can be viewed here.
Wireshark versions 1.2.0 through 1.2.7.  Bulletin can be viewed here.

-----------

Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot org

Guy

528 Posts
ISC Handler
May 8th 2010

Sign Up for Free or Log In to start participating in the conversation!