Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet injection or crafted capture file
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Vulnerability Type
N/A
Vulnerability Title
Wireshark 输入验证错误漏洞
Vulnerability Description
Wireshark(前称Ethereal)是Wireshark团队的一套网络数据包分析软件。该软件的功能是截取网络数据包,并显示出详细的数据以供分析。 Wireshark 中存在输入验证错误漏洞,该漏洞源于产品的解析器未对用户输入数据做有效验证。攻击者可通过该漏洞占用大量CPU资源。 以下产品及版本受到影响:Wireshark 3.6.0 至 3.6.1 版本, Wireshark 3.4.0 至 3.4.11 版本。
CVSS Information
N/A
Vulnerability Type
N/A