EIP-2026-103750

PRE-CVE

Wireshark 1.12.0 < 1.12.12 / 2.0.0 < 2.0.4 - WSP Dissector Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103750. PoCs published by Chris Benedict.

AI-analyzed exploit summary The writeup describes an infinite loop vulnerability in TShark (Wireshark) 2.0.4 caused by a zero offset returned by wkh_content_disposition(), leading to a DoS condition. The issue was discovered using AFL and affects versions 1.12.x and 2.0.x.

Description

Wireshark 1.12.0 < 1.12.12 / 2.0.0 < 2.0.4 - WSP Dissector Denial of Service

Exploits (1)

exploitdb WRITEUP VERIFIED

by Chris Benedict · textdosmultiple

https://www.exploit-db.com/exploits/40198

View Code ZIP pw:eip

The writeup describes an infinite loop vulnerability in TShark (Wireshark) 2.0.4 caused by a zero offset returned by wkh_content_disposition(), leading to a DoS condition. The issue was discovered using AFL and affects versions 1.12.x and 2.0.x.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: TShark (Wireshark) 2.0.4

No auth needed

Prerequisites: A crafted input to trigger the infinite loop in wkh_content_disposition()

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026