mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-09 15:15:46 +02:00
0xMarcio
836 B
836 B
CVE-2012-4288
Description
Integer overflow in the dissect_xtp_ecntl function in epan/dissectors/packet-xtp.c in the XTP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop or application crash) via a large value for a span length.
POC
Reference
- https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7571
- https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7571
Github
No PoCs found on GitHub currently.