Denial of service vulnerability in wiretap/catapult_dct2000.c in the Catapult DCT2000 dissector in Wireshark - CVE-2014-5162ID: oval:org.secpod.oval:def:21796 | Date: (C)2014-12-01 (M)2023-11-13 |
Class: VULNERABILITY | Family: unix |
The host is installed with Wireshark 1.10.x before 1.10.9 and is prone to a denial of service vulnerability. A flaw is present in the application, which does not properly strip '\n' and '\r' characters. Successful exploitation could allow attackers to cause a denial of service (off-by-one buffer underflow and application crash).
Platform: |
Red Hat Enterprise Linux 7 |