Stack Exhaustion Vulnerability in Wireshark 2.2.7 Dissect MP4 Box Function

Stack Exhaustion Vulnerability in Wireshark 2.2.7 Dissect MP4 Box Function

CVE-2017-9616 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

In Wireshark 2.2.7, overly deep mp4 chunks may cause stack exhaustion (uncontrolled recursion) in the dissect_mp4_box function in epan/dissectors/file-mp4.c.

Learn more about our Web Application Penetration Testing UK.