Wireshark 0.10.8 to 1.0.14 and 1.2.0 to 1.2.9 Multiple Vulnerabilities

Wireshark 0.10.8 to 1.0.14 and 1.2.0 to 1.2.9 Multiple Vulnerabilities

Proof-of-concept capture files for some of the issues are available from the following locations:

http://www.wireshark.org/download/automated/captures/fuzz-2010-06-11-3030.pcap

http://www.wireshark.org/download/automated/captures/fuzz-2010-06-20-7873.pcap

Note that Symantec has not verified or tested these files.

Currently we are not aware of any working exploits for the buffer-overflow issues. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.