CVE Vulnerabilities

CVE-2015-3810

Published: May 26, 2015 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.8 HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

epan/dissectors/packet-websocket.c in the WebSocket dissector in Wireshark 1.12.x before 1.12.5 uses a recursive algorithm, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted packet.

Affected Software

Name Vendor Start Version End Version
Wireshark Wireshark 1.12.4 1.12.4
Wireshark Wireshark 1.12.0 1.12.0
Wireshark Wireshark 1.12.2 1.12.2
Wireshark Wireshark 1.12.1 1.12.1
Wireshark Wireshark 1.12.3 1.12.3

References