Wireshark 1.12.x < 1.12.8 pcapng File Parser DoS
Medium Nessus Plugin ID 86480
SynopsisThe remote Windows host has an application installed that is affected by a denial of service vulnerability.
DescriptionThe version of Wireshark installed on the remote Windows host is 1.12.x prior to 1.12.8. It is, therefore, affected by a denial of service vulnerability due to a flaw in the pcapng file parser that is triggered when copying an interface filter. A remote attacker can exploit this, via a specially crafted copy routine packet, to crash the file parser.
Note that Nessus has not tested for this issues but has instead relied only on the application's self-reported version number.
SolutionUpgrade to Wireshark version 1.12.8 or later.