Security Advisory

CVE-2012-6054

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-12-05 11:00:00

Last updated 2024-08-06 21:21:28

Assigner mitre

State PUBLISHED

Description

The dissect_sflow_245_address_type function in epan/dissectors/packet-sflow.c in the sFlow dissector in Wireshark 1.8.x before 1.8.4 does not properly handle length calculations for an invalid IP address type, which allows remote attackers to cause a denial of service (infinite loop) via a packet that is neither IPv4 nor IPv6.

← Browse all CVEs View on cve.org ↗