Wireshark 0.8.20 through 1.2.8 Multiple Vulnerabilities

Wireshark 0.8.20 through 1.2.8 Multiple Vulnerabilities

Proof-of-concept capture files for some of the issues are available from the following locations:

http://www.wireshark.org/download/automated/captures/fuzz-2010-06-02-11020.pcap

http://www.wireshark.org/download/automated/captures/fuzz-2010-06-03-9743.pcap

Note that Symantec has not verified or tested these files.

Currently we are not aware of any working exploits for the buffer-overflow issues. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.