ronjor
March 31st, 2009, 12:19 PM
-{ Quote: "Description:
A vulnerability has been discovered in Wireshark, which can potentially be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a format string error within the PN-DCP dissector when processing station names containing format string specifiers. This can be exploited to cause a crash and potentially execute arbitrary code via specially crafted packets captured off the wire or loaded via a capture file.
The vulnerability is confirmed in version 1.0.6. Other versions may also be affected." }-Secunia (http://secunia.com/advisories/34542/)
A vulnerability has been discovered in Wireshark, which can potentially be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a format string error within the PN-DCP dissector when processing station names containing format string specifiers. This can be exploited to cause a crash and potentially execute arbitrary code via specially crafted packets captured off the wire or loaded via a capture file.
The vulnerability is confirmed in version 1.0.6. Other versions may also be affected." }-Secunia (http://secunia.com/advisories/34542/)