Integer overflows in AMQP dissector leading to denial of service in Wireshark 1.10.x and 1.12.x

Integer overflows in AMQP dissector leading to denial of service in Wireshark 1.10.x and 1.12.x

CVE-2014-8711 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Multiple integer overflows in epan/dissectors/packet-amqp.c in the AMQP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allow remote attackers to cause a denial of service (application crash) via a crafted amqp_0_10 PDU in a packet.

Learn more about our Web Application Penetration Testing UK.