Buffer Overflow in Wireshark MPEG Parser Allows Remote Code Execution or Denial of Service

Buffer Overflow in Wireshark MPEG Parser Allows Remote Code Execution or Denial of Service

CVE-2014-2299 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Buffer overflow in the mpeg_read function in wiretap/mpeg.c in the MPEG parser in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a large record in MPEG data.

Learn more about our Web Application Penetration Testing UK.