CVE-2017-9617

CVE-2017-9617

EPSS 1.0%

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13799 http://www.securityfocus.com/bid/99087 http://www.securitytracker.com/id/1038706