CVE-2011-1591

Description

Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted .pcap file.

How to fix CVE-2011-1591

To remediate CVE-2011-1591, upgrade the affected package to a fixed version below.

• Debian/wireshark—upgrade to 1.4.5-1 or later

Is CVE-2011-1591 being exploited?

Likely — EPSS is 77.2%, placing CVE-2011-1591 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.

Affected packages (1)

• from 0, < 1.4.5-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2011-1591