CVE-2022-0586 An infinite loop was found in the RTMPT protocol dissector of Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11. This could lead to denial of service.

CVE-2022-0586 An infinite loop was found in the RTMPT protocol dissector of Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11. This could lead to denial of service.

due to infinite loop in rtmpdump functions. Infinite loop can be triggered by capture file with wrong sequence or invalid packets in capture file. Infinite loop can be triggered by request/response with wrong sequence numbers or invalid packet. Infinite loop can be also triggered by request/response with invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by request/response with invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by request/response with invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet. Infinite loop can be also triggered by invalid packet

Vulnerability summary:

- CVE-2022-0586: "Infinite loop can be triggered by request/response with invalid packet."
- CVE-2022-0585: "Infinite loop can be triggered by request/response with infinite sequence numbers."

New Method :

The new method to fix the infinite loop problem is to use packet. This can be done by submitting a request with the following code:

47 41
48 72
49 43
50 44 \x0b\x7d

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe