CVE-2011-1143

Wireshark < 1.4.4 - Denial of Service via NTLMSSP Dissector NULL Pointer Dereference

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-1143. PoCs published by Buildbot Builder.

AI-analyzed exploit summary The provided content describes a remote denial-of-service vulnerability in Wireshark due to a NULL-pointer dereference error. The exploit is referenced via a PCAP file, indicating a network-based trigger for the vulnerability.

Description

epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark before 1.4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted .pcap file.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Buildbot Builder · textdoslinux
https://www.exploit-db.com/exploits/35432

The provided content describes a remote denial-of-service vulnerability in Wireshark due to a NULL-pointer dereference error. The exploit is referenced via a PCAP file, indicating a network-based trigger for the vulnerability.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Theoretical
Target: Wireshark (version not specified)
No auth needed
Prerequisites: Network access to send a malformed packet to a target running Wireshark
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (18)

Core 18
Core References
Various Sources vendor-advisory x_refsource_suse
https://hermes.opensuse.org/messages/8086844
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43759
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/44169
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0626
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48947
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/215900
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0370.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0719
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16209
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/46796
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1025148
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43821

Scores

EPSS 0.0859
EPSS Percentile 94.4%

Details

Status published
Products (45)
wireshark/wireshark 0.99.2
wireshark/wireshark 0.99.3
wireshark/wireshark 0.99.4
wireshark/wireshark 0.99.5
wireshark/wireshark 0.99.6
wireshark/wireshark 0.99.7
wireshark/wireshark 0.99.8
wireshark/wireshark 1.0.0
wireshark/wireshark 1.0.1
wireshark/wireshark 1.0.2
... and 35 more
Published Mar 03, 2011
Tracked Since Feb 18, 2026