Wireshark ASN.1 BER parser DoS Vulnerability (CVE-2014-5165)

Wireshark ASN.1 BER parser DoS Vulnerability (CVE-2014-5165)

Release date:
Updated on:

Affected Systems:
Wireshark <1.10.9
Description:
--------------------------------------------------------------------------------
Bugtraq id: 69000
CVE (CAN) ID: CVE-2014-5165
 
Wireshark is the most popular network protocol parser.
 
In the ASN.1 BER parser of Wireshark 1.10.0-1.10.8, The dissect_ber_constrained_bitstring function in the epan/dissectors/packet-ber.c does not properly validate the fill value, this allows remote attackers to cause denial of service (buffer overflow and application crash) through specially crafted data packets ).

Simple use of Wireshark

Install Wireshark in Ubuntu 12.04

Starting Wireshark packet capture from common users in Linux
 
<* Source: Buildbot Builder (buildbot@wireshark.org)
*>

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
 
Wireshark
---------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
 
Http://www.wireshark.org/security/wnpa-sec-2014-11.html
Https://bugs.wireshark.org/bugzilla/show_bug.cgi? Id = 10187
Https://code.wireshark.org/review/gitweb? P = wireshark. git; a = commit; h = 17a552666b50896a9b9dde8ee6a1052e7f9a622e

Wireshark details: click here
Wireshark: click here

This article permanently updates the link address: