Wireshark SDP Protocol Dissector Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in Wireshark versions 4.6.0 through 4.6.4. The issue arises in the SDP protocol dissector, which can crash the application by accessing an invalid memory address. This crash occurs when a SIP INVITE packet and a corresponding 200 OK packet both contain identical 'a=control' values. While Wireshark versions 4.5 and 4.4 can handle such packets without issue, the vulnerable versions fail and crash.

Impact

Exploitation of this vulnerability leads to a crash of the Wireshark application, causing a denial-of-service condition.

Reproduction

To reproduce this vulnerability, open a packet capture file in Wireshark version 4.6.0 to 4.6.4 that contains SIP INVITE and 200 OK packets with the same 'a=control' values. Wireshark will crash shortly after reporting a status access violation due to the dissector accessing an invalid memory address.

Remediation

Users are advised to upgrade to Wireshark version 4.6.5 or later.