CVE-2023-0666 🤘

2023-06-06 1:37:23 PM CDT

CVE-2023-0666: Wireshark RTPS Parsing Buffer Overflow

AHA! has discovered an issue with Wireshark from The Wireshark Foundation, and is issuing this disclosure in accordance with AHA!’s standard disclosure policy today, on Monday, June 5, 2023. CVE-2023-0666 has been assigned to this issue.

Any questions about this disclosure should be directed to [email protected].

Executive Summary

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark. CVE-2023-0666 appears to be an instance of CWE-122.

CVE-2023-0667

2023-06-06 1:37:23 PM CDT

CVE-2023-0667: Wireshark MSMMS parsing buffer overflow

AHA! has discovered an issue with Wireshark from The Wireshark Foundation, and is issuing this disclosure in accordance with AHA!’s standard disclosure policy today, on Monday, June 5, 2023. CVE-2023-0667 has been assigned to this issue.

Any questions about this disclosure should be directed to [email protected].

Executive Summary

Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark. CVE-2023-0667 appears to be an instance of CWE-122.

CVE-2023-0668

2023-06-06 1:37:23 PM CDT

CVE-2023-0668: Wireshark IEEE-C37.118 parsing buffer overflow

AHA! has discovered an issue with Wireshark from The Wireshark Foundation, and is issuing this disclosure in accordance with AHA!’s standard disclosure policy today, on Monday, June 5, 2023. CVE-2023-0668 has been assigned to this issue.

Executive Summary

Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark. CVE-2023-0668 appears to be an instance of CWE-125.

cve-template

This is a template for a typical vulnerability disclosure from AHA!. This template is licensed under a Creative Commons Attribution 4.0 International License – if you’re writing disclosures for public distribution, please use it!

CVE-20XX-YYYY: $VENDOR $PRODUCT $PROBLEM

Here’s the preamble where you tell the reader what you’re going to tell them.

AHA! has discovered an issue with $PRODUCT from $VENDOR, and is publishing this disclosure in accordance with AHA!’s standard disclosure policy today, on $DATE. CVE-20XX-YYYY has been assigned to this issue.