Buffer Overflow in ERF Dissector Allows Remote Code Execution

Buffer Overflow in ERF Dissector Allows Remote Code Execution

CVE-2012-4294 · MEDIUM Severity

AV:A/AC:L/AU:N/C:P/I:P/A:P

Buffer overflow in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to execute arbitrary code via a large speed (aka rate) value.

Learn more about our Web Application Penetration Testing UK.