wireshark: multiple vulnerabilities
Posted Feb 10, 2007 8:09 UTC (Sat) by bronson
Parent article: wireshark: multiple vulnerabilities
Fetchmail maybe? Especially if measured in vulns/line of code. :)
I agree, Ethereal/Wireshark has an abysmal security record. I think it's because the protocol decoders are notoriously hard to write, and are written in a brittle, dangerous language by people who tend to be more interested in getting packets decoded rather than long-term, exhaustively tested code.
It would be nice if dissectors could be written in Perl/Ruby/Python/whatever. That would get rid of almost all of the vulns.
Has a Wireshark vulnerability ever been exploited in the wild?
to post comments)