Wireshark 1.0.x Malformed .ncf packet capture Local Denial of Service

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Wireshark 1.0.x Malformed .ncf packet capture Local Denial of Service
# Published : 2008-09-29
# Author : Shinnok
# Previous Title : ESET SysInspector - 1.1.1.0 (esiadrv.sys) Proof of Concept Exploit
# Next Title : Google Chrome 0.2.149.30 Window Object Suppressing DoS Exploit

Wireshark 1.0.x .ncf local denial of service
author: Shinnok

Description

Wireshark 1.0.x crashes as a result of a failed assertion when dealing
with a malformed Tamosoft CommView .ncf packet capture:
Err file wtap.c: line 620 (wtap_read): assertion failed:
(wth->phdr.pkt_encap != WTAP_ENCAP_PER_PACKET)

http://exploit-db.com/sploits/2008-wireshark.ncf

# www.Syue.com [2008-09-29]