The dissect_hip_tlv function in epan/dissectors/packet-hip.c in the HIP dissector in Wireshark 1.12.x prior to 1.12.1 does not properly handle a NULL tree, which allows remote malicious users to cause a denial of service (infinite loop) via a crafted packet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wireshark wireshark 1.12.0 |