Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-4300Improper Restriction of Operations within the Bounds of a Memory Buffer in Wireshark

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-122Heap-based Buffer Overflow8 documents7 sources
Severity
7.5HIGHNVD
EPSS
10.2%
top 6.87%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
WiresharkDebian Wireshark
Timeline
PublishedNov 26
Latest updateMay 17

Description

Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an LDSS packet with a long digest line that triggers memory corruption.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

debiandebian/wireshark< wireshark 1.2.11-4 (bookworm)
Debianwireshark/wireshark< 1.2.11-4+3
NVDwireshark/wireshark15 versions+14

🔴Vulnerability Details

2
GHSA
GHSA-98x8-hpq6-xj2q: Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss2022-05-17
OSV
CVE-2010-4300: Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss2010-11-26

💥Exploits & PoCs

1
Exploit-DB
Wireshark - LDSS Dissector Buffer Overflow2010-12-04

📋Vendor Advisories

2
Red Hat
Wireshark: Heap-based buffer overflow in LDSS dissector2010-11-18
Debian
CVE-2010-4300: wireshark - Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissector...2010

💬Community

2
Bugzilla
CVE-2010-4300 Wireshark: Heap-based buffer overflow in LDSS dissector [fedora-12]2010-11-23
Bugzilla
CVE-2010-4300 Wireshark: Heap-based buffer overflow in LDSS dissector2010-11-23