CVE-2009-3242

Wireshark 1.2.0 and 1.2.1 - Denial of Service in GSM A RR Dissector

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-3242. PoCs published by Buildbot Builder.

AI-analyzed exploit summary The provided text describes a denial-of-service vulnerability in Wireshark versions 0.99.6 through 1.2.1. It references a PCAP file hosted on GitLab, which likely contains malicious network traffic to trigger the DoS condition.

Description

Unspecified vulnerability in packet.c in the GSM A RR dissector in Wireshark 1.2.0 and 1.2.1 allows remote attackers to cause a denial of service (application crash) via unknown vectors related to "an uninitialized dissector handle," which triggers an assertion failure.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Buildbot Builder · textdoslinux

https://www.exploit-db.com/exploits/33224

View Code ZIP pw:eip

The provided text describes a denial-of-service vulnerability in Wireshark versions 0.99.6 through 1.2.1. It references a PCAP file hosted on GitLab, which likely contains malicious network traffic to trigger the DoS condition.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Wireshark 0.99.6 through 1.2.1

No auth needed

Prerequisites: Access to send malicious network traffic to a target running vulnerable Wireshark

MITRE ATT&CK