Wireshark: Denial of Service Multiple Denial of Service vulnerabilities have been discovered in Wireshark. wireshark March 24, 2008 March 24, 2008: 01 212149 remote 0.99.8 0.99.8

Wireshark is a network protocol analyzer with a graphical front-end.

Multiple unspecified errors exist in the SCTP, SNMP, and TFTP dissectors.

A remote attacker could cause a Denial of Service by sending a malformed packet.

Disable the SCTP, SNMP, and TFTP dissectors.

All Wireshark users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-analyzer/wireshark-0.99.8" CVE-2008-1070 CVE-2008-1071 CVE-2008-1072 rbu mfleming p-y