Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.
Metrics
Affected Vendors & Products
References
History
Tue, 07 Jan 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: AHA
Published: 2023-06-07T02:32:45.095Z
Updated: 2025-01-07T14:59:00.663Z
Reserved: 2023-02-03T22:08:47.155Z
Link: CVE-2023-0668

Updated: 2024-08-02T05:17:50.341Z

Status : Modified
Published: 2023-06-07T03:15:09.193
Modified: 2025-01-07T16:15:29.157
Link: CVE-2023-0668
