EIP-2026-103731

PRE-CVE

Wireshark - add_ff_vht_compressed_beamforming_report Static Out-of-Bounds Read

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103731. PoCs published by Google Security Research.

AI-analyzed exploit summary The provided content details a global-buffer-overflow vulnerability in Wireshark's IEEE 802.11 dissector, specifically in the `add_ff_vht_compressed_beamforming_report` function. The crash is triggered by a malformed file processed by tshark, leading to an out-of-bounds read from static memory.

Description

Wireshark - add_ff_vht_compressed_beamforming_report Static Out-of-Bounds Read

Exploits (1)

exploitdb WRITEUP VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/39483

View Code ZIP pw:eip

The provided content details a global-buffer-overflow vulnerability in Wireshark's IEEE 802.11 dissector, specifically in the `add_ff_vht_compressed_beamforming_report` function. The crash is triggered by a malformed file processed by tshark, leading to an out-of-bounds read from static memory.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Wireshark (git master)

No auth needed

Prerequisites: A malformed file to trigger the vulnerability

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026