Vulnerabilities

CVE-2013-5718

by Fred · 13/09/2013

The dissect_nbap_T_dCH_ID function in epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 does not restrict the dch_id value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

Date published : 2013-09-13

http://anonsvn.wireshark.org/viewvc?view=revision&revision=51195

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9005

Similar

Tags: Cybersecurity Alert