Summary

Name: Multiple problems in Wireshark® versions 0.8.19 to 1.0.1

Docid: wnpa-sec-2008-04

Date: July 10, 2008

Versions affected: 0.8.19 up to and including 1.0.1

Details

Description

Wireshark 1.0.2 fixes the following vulnerability:

• Wireshark could crash while reassembling packets. (Bug 2470)
  Versions affected: 0.8.19 to 1.0.1

Impact

It may be possible to make Wireshark crash by injecting a series of malformed packets onto the wire or by convincing someone to read a malformed packet trace file.

Resolution

Upgrade to Wireshark 1.0.2 or later. Due to the nature of this bug, there is no workaround for previous versions.