module

Wireshark packet-dect.c Stack Buffer Overflow (local)

Disclosed	Created
2011-04-18	2018-05-30

Disclosed

2011-04-18

Created

2018-05-30

Description

This module exploits a stack buffer overflow in Wireshark
When opening a malicious .pcap file in Wireshark, a stack buffer occurs,
resulting in arbitrary code execution.

Note: To exploit the vulnerability remotely with Scapy: sendp(rdpcap("file")).

Authors

Paul Makowski
sickness
corelanc0d3r peter.ve@corelan.be

Platform

Windows

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:


    msf > use exploit/windows/fileformat/wireshark_packet_dect
    msf exploit(wireshark_packet_dect) > show targets
        ...targets...
    msf exploit(wireshark_packet_dect) > set TARGET < target-id >
    msf exploit(wireshark_packet_dect) > show options
        ...show and set options...
    msf exploit(wireshark_packet_dect) > exploit

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today