Wireshark WiMax DLMAP Dissector Length Field Validation Vulnerability

Wireshark WiMax DLMAP Dissector Length Field Validation Vulnerability

CVE-2020-9430 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the WiMax DLMAP dissector could crash. This was addressed in plugins/epan/wimax/msg_dlmap.c by validating a length field.

Learn more about our Web Application Penetration Testing UK.