Denial of Service Vulnerability in Wireshark LBMR Dissector

Denial of Service Vulnerability in Wireshark LBMR Dissector

CVE-2015-3808 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in Wireshark 1.12.x before 1.12.5 does not reject a zero length, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

Learn more about our Web Application Penetration Testing UK.