Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-3389Improper Input Validation in Wireshark

CWE-20Improper Input Validation7 documents7 sources
Severity
5.0MEDIUMNVD
EPSS
26.5%
top 3.66%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
WiresharkDebian Wireshark
Timeline
PublishedJun 26
Latest updateMay 1

Description

Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

debiandebian/wireshark< wireshark 0.99.6pre1-1 (bookworm)
Debianwireshark/wireshark< 0.99.6pre1-1+3
NVDwireshark/wireshark6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-fmgx-grvc-558f: Wireshark before 02022-05-01
OSV
CVE-2007-3389: Wireshark before 02007-06-26

💥Exploits & PoCs

1
Metasploit
Wireshark chunked_encoding_dissector Function DOS

📋Vendor Advisories

2
Red Hat
Wireshark crashes when inspecting HTTP traffic2007-02-22
Debian
CVE-2007-3389: wireshark - Wireshark before 0.99.6 allows remote attackers to cause a denial of service (cr...2007

💬Community

1
Bugzilla
CVE-2007-3389 Wireshark crashes when inspecting HTTP traffic2007-06-26