CVE-2008-1563

Description

The "decode as" feature in packet-bssap.c in the SCCP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet.

How to fix CVE-2008-1563

To remediate CVE-2008-1563, upgrade the affected package to a fixed version below.

• Debian/wireshark—upgrade to 1.0.0-1 or later

Is CVE-2008-1563 being exploited?

Moderate — EPSS is 8.0%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 1.0.0-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2008-1563