cvedb.io
CVE-2017-6014
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2017-02-17T07:59:00.967 · Last modified 2026-06-17T01:21:37.577

Summary

In Wireshark 2.2.4 and earlier, a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to read from will not advance, causing continuous attempts to read the same zero length packet. This will quickly exhaust all system memory.

Affected products

wireshark — wireshark

Does this affect you?

Add your gear to cvedb and we'll alert you only when wireshark ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.