Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an LDSS packet with a long digest line that triggers memory corruption.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-11-26T18:23:00

Updated: 2024-08-07T03:43:13.776Z

Reserved: 2010-11-22T00:00:00

Link: CVE-2010-4300

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-11-26T19:00:09.563

Modified: 2024-11-21T01:20:38.423

Link: CVE-2010-4300

cve-icon Redhat

Severity : Moderate

Publid Date: 2010-11-18T00:00:00Z

Links: CVE-2010-4300 - Bugzilla