Denial of service vulnerability in Wireshark - wnpa-sec-2021-11 (Mac OS)ID: oval:org.secpod.oval:def:76121 | Date: (C)2021-11-18 (M)2023-12-03 |
Class: PATCH | Family: macos |
The host is missing a security update according to Wireshark Advisory. The update is required to fix a denial-of-service vulnerability. A flaw is present in the application, which fails to properly handle large loop issue in the PNRP dissector. On Successful exploitation,it is possible to make Wireshark consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
Platform: |
Apple Mac OS 14 |
Apple Mac OS 13 |
Apple Mac OS X 10.15 |
Apple Mac OS X 10.10 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.14 |
Apple Mac OS 11 |
Apple Mac OS 12 |