CVE-2016-6512

MEDIUM

Wireshark 2.x < 2.0.5 - Denial of Service via Crafted Packet in MMSE/WAP/WBXML/WSP Dissectors

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-6512. PoCs published by Antti Levomäki.

AI-analyzed exploit summary This exploit demonstrates a memory exhaustion vulnerability in TShark (Wireshark) 2.0.2, where a specially crafted PCAP file with a single UDP packet causes excessive memory consumption (>4GB). The PoC is provided as a downloadable PCAP file.

Description

epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an overflow check in the tvb_get_guintvar function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet, related to the MMSE, WAP, WBXML, and WSP dissectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Antti Levomäki · textdosmultiple

https://www.exploit-db.com/exploits/40195

View Code ZIP pw:eip

This exploit demonstrates a memory exhaustion vulnerability in TShark (Wireshark) 2.0.2, where a specially crafted PCAP file with a single UDP packet causes excessive memory consumption (>4GB). The PoC is provided as a downloadable PCAP file.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: TShark (Wireshark) 2.0.2

No auth needed

Prerequisites: TShark (Wireshark) 2.0.2 installed on the target system

MITRE ATT&CK