The Bluetooth HCI ACL dissector in Wireshark 1.10.x prior to 1.10.2 does not properly maintain a certain free list, which allows remote malicious users to cause a denial of service (application crash) via a crafted packet that is not properly handled by the wmem_block_alloc function in epan/wmem/wmem_allocator_block.c.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wireshark wireshark 1.10.1 |
||
wireshark wireshark 1.10.0 |