CVE-2008-3140

Wireshark 1.0.0 - Denial of Service in Syslog Dissector

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3140. PoCs published by Noam Rathus.

AI-analyzed exploit summary The provided text describes multiple vulnerabilities in Wireshark versions 0.9.5 to 1.0.0, including potential information disclosure, DoS, and unconfirmed arbitrary code execution. It references PCAP files hosted on ExploitDB as proof-of-concept exploits.

Description

The syslog dissector in Wireshark (formerly Ethereal) 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors, possibly related to an "incomplete SS7 MSU syslog encapsulated packet."

Exploits (1)

exploitdb WRITEUP VERIFIED

by Noam Rathus · textdosmultiple

https://www.exploit-db.com/exploits/32006

View Code ZIP pw:eip

The provided text describes multiple vulnerabilities in Wireshark versions 0.9.5 to 1.0.0, including potential information disclosure, DoS, and unconfirmed arbitrary code execution. It references PCAP files hosted on ExploitDB as proof-of-concept exploits.

Classification

Writeup 90%

Attack Type

Dos | Info Leak

Complexity

Moderate

Reliability

Theoretical

Target: Wireshark 0.9.5 to 1.0.0

No auth needed

Prerequisites: Access to network traffic captured in PCAP format · Victim must open malicious PCAP in vulnerable Wireshark version

MITRE ATT&CK

T1499 - Endpoint Denial of Service T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (16)

Core 16

Core References

Vendor Advisory vendor-advisory x_refsource_fedora

https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00544.html

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/30886

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/30942

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2008/1982/references

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/31687

Various Sources x_refsource_confirm

http://www.wireshark.org/security/wnpa-sec-2008-03.html

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200808-04.xml

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/493882/100/0/threaded

Third Party Advisory x_refsource_confirm

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0212

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14700

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/30020

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/31378

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/43518

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1020404

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/31085

Scores

EPSS 0.0587

EPSS Percentile 90.7%

Details

Status published

Products (1)

wireshark/wireshark 1.0.0

Published Jul 10, 2008

Tracked Since Feb 18, 2026