CVE-2015-8727

MEDIUM

Wireshark 1.12.x < 1.12.9 and 2.0.x < 2.0.1 - Denial of Service via RSVP Dissector Use-After-Free

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-8727. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates a use-after-free vulnerability in Wireshark's RSVP dissector, leading to a crash via a malformed packet file. The PoC includes crash logs and a link to the triggering files.

Description

The dissect_rsvp_common function in epan/dissectors/packet-rsvp.c in the RSVP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not properly maintain request-key data, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/39002

View Code ZIP pw:eip

This exploit demonstrates a use-after-free vulnerability in Wireshark's RSVP dissector, leading to a crash via a malformed packet file. The PoC includes crash logs and a link to the triggering files.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Wireshark (git master at time of disclosure)

No auth needed

Prerequisites: A malformed packet capture file

MITRE ATT&CK