Denial of service vulnerability in Wireshark via fragmented packets (Mac OS X)| ID: oval:org.secpod.oval:def:40775 | Date: (C)2017-06-08 (M)2022-11-04 |
| Class: VULNERABILITY | Family: macos |
The host is installed with Wireshark 0.8.19 through 1.0.1 and is prone to a denial of service vulnerability. A flaw is present in the fragment_add_work function, which fails to properly handle series of fragmented packets with non-sequential fragmentation offset values. Successful exploitation allows remote attackers to cause a denial of service (crash).
| Platform: |
| Apple Mac OS 12 |
| Apple Mac OS 11 |
| Apple Mac OS X 10.15 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.9 |
| Apple Mac OS X 10.10 |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X Server 10.9 |
| Apple Mac OS X Server 10.10 |
| Apple Mac OS X Server 10.11 |
| Apple Mac OS X Server 10.12 |
