CVE-2007-3389

Wireshark < 0.99.6 - Denial of Service via Crafted Chunked Encoding in HTTP Response

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3389. Includes Metasploit module auxiliary/dos/wireshark/chunked.

AI-analyzed exploit summary This Metasploit module exploits a DoS vulnerability in Wireshark's chunked encoding dissector by sending a malformed HTTP response with a chunked-encoding length of 0, causing a crash in versions 0.99.5 and earlier.

Description

Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload.

Exploits (1)

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/wireshark/chunked.rb

View Code ZIP pw:eip

This Metasploit module exploits a DoS vulnerability in Wireshark's chunked encoding dissector by sending a malformed HTTP response with a chunked-encoding length of 0, causing a crash in versions 0.99.5 and earlier.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Wireshark 0.99.5 and earlier

No auth needed

Prerequisites: Network access to target running vulnerable Wireshark version

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (21)

Core 21

Core References

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/25833

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/37643

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2008-0059.html

Various Sources x_refsource_confirm

http://www.wireshark.org/security/wnpa-sec-2007-02.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2007-0710.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/26499

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/25987

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/26004

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200708-12.xml

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/35207

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2007-0709.html

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDKSA-2007:145

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/27592

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9964

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1018315

Issue Tracking x_refsource_confirm

https://issues.rpath.com/browse/RPL-1498

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/24662

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/28583

Various Sources x_refsource_confirm

http://www.wireshark.org/docs/relnotes/wireshark-0.99.6.html

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2007/2353

Vendor Advisory vendor-advisory x_refsource_suse

http://www.novell.com/linux/security/advisories/2007_15_sr.html

Scores

EPSS 0.2646

EPSS Percentile 96.5%

Details

CWE

CWE-20

Status published

Products (6)

wireshark/wireshark 0.99.0

wireshark/wireshark 0.99.1

wireshark/wireshark 0.99.2

wireshark/wireshark 0.99.3

wireshark/wireshark 0.99.4

wireshark/wireshark 0.99.5

Published Jun 26, 2007

Tracked Since Feb 18, 2026