vendor:
Wireshark
by:
sickness, corelanc0d3r
7.5
CVSS
HIGH
Stack Buffer Overflow
121
CWE
Product Name: Wireshark
Affected Version From: Wireshark <= 1.4.4
Affected Version To: Wireshark <= 1.4.4
Patch Exists: YES
Related CWE:
CPE:
Platforms Tested: Windows
2011
Wireshark <= 1.4.4 packet-dect.c Stack Buffer Overflow
This module exploits a stack buffer overflow in Wireshark <= 1.4.4 When opening a malicious .pcap file in Wireshark, a stack buffer occurs, resulting in arbitrary code execution. This exploit bypasses DEP & ASLR and works on XP, Vista & Windows 7.
Mitigation:
Update to the latest version of Wireshark
