CVE-2016-6505

MEDIUM

Wireshark 1.12.x < 1.12.13 and 2.x < 2.0.5 - Denial of Service via PacketBB Dissector

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-6505. PoCs published by Chris Benedict.

AI-analyzed exploit summary The provided text describes a divide-by-zero vulnerability in TShark versions 1.12.8 to 2.0.4, triggered by a malformed packet causing a crash in the dissect_pbb_tlvblock() function. The PoC is referenced as a separate binary file.

Description

epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted packet.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Chris Benedict · textdosmultiple

https://www.exploit-db.com/exploits/40197

View Code ZIP pw:eip

The provided text describes a divide-by-zero vulnerability in TShark versions 1.12.8 to 2.0.4, triggered by a malformed packet causing a crash in the dissect_pbb_tlvblock() function. The PoC is referenced as a separate binary file.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: TShark 1.12.8 to 2.0.4

No auth needed

Prerequisites: A malformed packet file to trigger the vulnerability

MITRE ATT&CK