DoS vulnerabilities in Wireshark
The pre-release version 1.0.5 of Wireshark, the network protocol analyser (or "packet sniffer"), has eliminated a vulnerability that could make it crash. It is reported that the error occurs during the analysis of over-long SMTP requests to a server. When the final version 1.0.5 will appear is still unknown, but the developers' Roadmap says that a large number of bugs still remain to be corrected.
See also:
- Vulnerability in WireShark 1.0.4 for DoS Attack, BKIS report
(trk)