CVE-2016-5350

Published: Aug 7, 2016Modified: May 6, 2026

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

epan/dissectors/packet-dcerpc-spoolss.c in the SPOOLS component in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles unexpected offsets, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

Affected (16)

Products: Wireshark: Wireshark

Wireshark

1 product

Wireshark

Configuration A

16 vulnerable

Vulnerable Software	Affected Versions
Wireshark Wireshark	Version 1.12.0
Wireshark Wireshark	Version 1.12.10
Wireshark Wireshark	Version 1.12.11
Wireshark Wireshark	Version 1.12.1
Wireshark Wireshark	Version 1.12.2
Wireshark Wireshark	Version 1.12.3
Wireshark Wireshark	Version 1.12.4
Wireshark Wireshark	Version 1.12.5
Wireshark Wireshark	Version 1.12.6
Wireshark Wireshark	Version 1.12.7
Wireshark Wireshark	Version 1.12.8
Wireshark Wireshark	Version 1.12.9
Wireshark Wireshark	Version 2.0.0
Wireshark Wireshark	Version 2.0.1
Wireshark Wireshark	Version 2.0.2
Wireshark Wireshark	Version 2.0.3