CVE-2014-6424
EPSS 0.47%Published: 9/20/2014Modified: 4/28/2026
Description
The dissect_v9_v10_pdu_data function in epan/dissectors/packet-netflow.c in the Netflow dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 refers to incorrect offset and start variables, which allows remote attackers to cause a denial of service (uninitialized memory read and application crash) via a crafted packet.
Affected packages (1)
- Debian/wiresharkfrom 0, < 1.12.1+g01b65bf-1