CVE-2008-1561

Wireshark 0.99.5-0.99.8 - Denial of Service via Malformed X.509sat or Roofnet Packet

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-1561. PoCs published by Peter Makrai.

AI-analyzed exploit summary The provided text describes multiple denial-of-service vulnerabilities in Wireshark versions 0.99.2 to 0.99.8. It references a PCAP file (31552.pcap) hosted on GitLab, which likely contains malicious network traffic to trigger these vulnerabilities.

Description

Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) 0.99.5 through 0.99.8 allow remote attackers to cause a denial of service (application crash) via a malformed packet to the (1) X.509sat or (2) Roofnet dissectors. NOTE: Vector 2 might also lead to a hang.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Peter Makrai · textdoslinux
https://www.exploit-db.com/exploits/31552

The provided text describes multiple denial-of-service vulnerabilities in Wireshark versions 0.99.2 to 0.99.8. It references a PCAP file (31552.pcap) hosted on GitLab, which likely contains malicious network traffic to trigger these vulnerabilities.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Theoretical
Target: Wireshark 0.99.2 to 0.99.8
No auth needed
Prerequisites: Network access to send malicious PCAP traffic to a target running vulnerable Wireshark
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (25)

Core 25
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/28485
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29622
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0890.html
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/490487/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15089
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29695
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2008:091
Third Party Advisory vendor-advisory x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200805-05.xml
Third Party Advisory x_refsource_confirm
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0138
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29971
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32091
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29736
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2773
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1019728
Various Sources x_refsource_confirm
http://www.wireshark.org/security/wnpa-sec-2008-02.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41514
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1007/references
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29569
Issue Tracking x_refsource_confirm
https://issues.rpath.com/browse/RPL-2418
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9315
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41515

Scores

EPSS 0.0894
EPSS Percentile 94.6%

Details

Status published
Products (7)
wireshark/wireshark 0.99.2
wireshark/wireshark 0.99.3
wireshark/wireshark 0.99.4
wireshark/wireshark 0.99.5
wireshark/wireshark 0.99.6
wireshark/wireshark 0.99.7
wireshark/wireshark 0.99.8
Published Mar 31, 2008
Tracked Since Feb 18, 2026