ID CVE-2018-18226
Summary In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This was addressed in epan/dissectors/packet-steam-ihs-discovery.c by changing the memory-management approach.
References
Vulnerable Configurations
  • Wireshark 2.6.0
    cpe:2.3:a:wireshark:wireshark:2.6.0
  • Wireshark 2.6.1
    cpe:2.3:a:wireshark:wireshark:2.6.1
CVSS
Base: 7.8
Impact:
Exploitability:
CWE CWE-399
CAPEC
nessus via4
NASL family Windows
NASL id WIRESHARK_2_6_4.NASL
description The version of Wireshark installed on the remote Windows host is 2.6.x prior to 2.6.4. It is, therefore, affected by multiple vulnerabilities.
last seen 2018-12-15
modified 2018-12-14
plugin id 118207
published 2018-10-18
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=118207
title Wireshark 2.6.x < 2.6.4 Multiple Vulnerabilities
refmap via4
bid 105583
misc
sectrack 1041909
Last major update 12-10-2018 - 02:29
Published 12-10-2018 - 02:29
Last modified 29-11-2018 - 08:17
Back to Top