epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a zero length value when it is decoded.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Wireshark | Wireshark | 0.9.8 (including) | 0.9.8 (including) |
Wireshark | Wireshark | 0.9.10 (including) | 0.9.10 (including) |
Wireshark | Wireshark | 0.10 (including) | 0.10 (including) |
Wireshark | Wireshark | 0.10.4 (including) | 0.10.4 (including) |
Wireshark | Wireshark | 0.10.13 (including) | 0.10.13 (including) |
Wireshark | Wireshark | 0.99 (including) | 0.99 (including) |
Wireshark | Wireshark | 0.99.1 (including) | 0.99.1 (including) |
Wireshark | Wireshark | 0.99.2 (including) | 0.99.2 (including) |
Wireshark | Wireshark | 0.99.3 (including) | 0.99.3 (including) |