漏洞类别:Local
漏洞等级: 
漏洞信息
Wireshark is a network protocol analyzer available for multiple operating systems. It lets you capture and interactively browse the traffic running on a computer network.
Multiple vulnerabilities were reported in Wireshark. A remote user can cause denial of service conditions on the target system.
A remote user can send specially crafted data to cause the target service to crash.
The IMAP dissector is affected [CVE-2017-7703].
The PacketBB dissector is affected.
A remote user can send specially crafted data to cause the target service to enter an infinite loop.
The WBXML dissector is affected [CVE-2017-7702].
The NetParser file parser is affected [CVE-2017-7700].
The RPC over RDMA dissector is affected [CVE-2017-7705].
The BGP dissector is affected [CVE-2017-7701].
The DOF dissector is affected [CVE-2017-7704].
Affected Versions
Wireshark 2.0.0 to 2.0.11, 2.2.0 to 2.2.5
漏洞危害
A remote user can cause denial of service conditions.
解决方案
The vendor has issued a fix (2.0.12, 2.2.6).The latest version is available for download from Wireshark.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论