EIP-2026-103741

PRE-CVE

Wireshark - erf_meta_read_tag SIGSEGV

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103741. PoCs published by Google Security Research.

AI-analyzed exploit summary The provided content describes a SIGSEGV crash in Wireshark due to an invalid memory read in the `erf_meta_read_tag` function, triggered by a malformed file. The crash is reproducible in an ASAN build of Wireshark (git master) and includes a reference to a Proof of Concept file hosted externally.

Description

Wireshark - erf_meta_read_tag SIGSEGV

Exploits (1)

exploitdb WRITEUP VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/39877

View Code ZIP pw:eip

The provided content describes a SIGSEGV crash in Wireshark due to an invalid memory read in the `erf_meta_read_tag` function, triggered by a malformed file. The crash is reproducible in an ASAN build of Wireshark (git master) and includes a reference to a Proof of Concept file hosted externally.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Wireshark (git master)

No auth needed

Prerequisites: A malformed file to trigger the crash

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026