CVE-2015-8739

MEDIUM

Wireshark 2.0.x - Denial of Service via IPMI Dissector Packet Scope Access

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-8739. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates a denial-of-service (DoS) vulnerability in Wireshark by triggering an assertion failure in the `wmem_alloc` function when processing a malformed file. The crash occurs due to an out-of-scope memory allocator, leading to a SIGABRT signal.

Description

The ipmi_fmt_udpport function in epan/dissectors/packet-ipmi.c in the IPMI dissector in Wireshark 2.0.x before 2.0.1 improperly attempts to access a packet scope, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/38994

View Code ZIP pw:eip

This exploit demonstrates a denial-of-service (DoS) vulnerability in Wireshark by triggering an assertion failure in the `wmem_alloc` function when processing a malformed file. The crash occurs due to an out-of-scope memory allocator, leading to a SIGABRT signal.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Wireshark (git master at the time of disclosure)

No auth needed

Prerequisites: A malformed file to be processed by Wireshark/tshark

MITRE ATT&CK