Wireshark version 1.0 network sniffer released
The popular Wireshark Open Source network analysis tool has been released in version 1.0 after ten years of development. The new version resolves several denial-of-service vulnerabilities and contains a Mac OS X version marked as experimental.
In Wireshark versions 0.992 to 0.99.8, specially crafted network packets can be used to crash the analysis modules for the X.509sat, Roofnet, LDAP and SCCP protocols. Version 1.0 fixes the flaws and also offers new modules for the IEEE 802.15.4, Infiniband, Parallel Redundancy Protocol, RedBack Lawful Intercept and Xcsl protocols.
The release notes also list several known problems of version 1.0. For example, on Windows systems with multiple displays the Wireshark window may be positioned outside the monitor area. Under Mac OS X Wireshark may disrupt the WLAN connection and the analysis component for the BER protocol may get trapped in an infinite loop.
The new packages are now available from the project's Sourceforge download servers. Wireshark users should upgrade to the new version when they have an opportunity.
See also:
- Wireshark 1.0 Released, press release by the Wireshark developers
- Wireshark 1.0.0 Release Notes, Wireshark release notes for version 1.0
- Multiple problems in Wireshark® versions 0.99.2 to 0.99.8, security advisory by the Wireshark developers
- Download Wireshark 1.0
(mba)