Wireshark IAX2 parser Denial of Service Vulnerability (CVE-2016-4081)
Wireshark IAX2 parser Denial of Service Vulnerability (CVE-2016-4081)
Release date:
Updated on:
Affected Systems:
Wireshark 2.0.x <2.0.3
Wireshark 1.12.x <1.12.11
Description:
CVE (CAN) ID: CVE-2016-4081
Wireshark is the most popular network protocol parser.
Wireshark 1.12.x <1.12.11, 2.0.x <2.0.3 version, IAX2 parser epan/dissectors/packet-iax2.c uses an incorrect Integer type. By constructing data packets, remote attackers can cause DoS attacks.
<* Source: Wireshark
*>
Suggestion:
Vendor patch:
Wireshark
---------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Https://www.wireshark.org/security/wnpa-sec-2016-24.html
Install Wireshark in Ubuntu 13.10
Simple use of Wireshark
Install Wireshark in Ubuntu 12.04
Starting Wireshark packet capture from common users in Linux
Install and run Wireshark in Linux
Wireshark details: click here
Wireshark: click here
This article permanently updates the link address: