epan/dissectors/packet-dcerpc-spoolss.c in the SPOOLS component in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles unexpected offsets, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
[
{
"source": "https://github.com/wireshark/wireshark/commit/b4d16b4495b732888e12baf5b8a7e9bf2665e22b",
"id": "CVE-2016-5350-3d8726e1",
"deprecated": false,
"signature_version": "v1",
"target": {
"function": "dissect_spoolss_keybuffer",
"file": "epan/dissectors/packet-dcerpc-spoolss.c"
},
"digest": {
"length": 498.0,
"function_hash": "6785783194059742284134532502584093970"
},
"signature_type": "Function"
},
{
"source": "https://github.com/wireshark/wireshark/commit/b4d16b4495b732888e12baf5b8a7e9bf2665e22b",
"id": "CVE-2016-5350-ecdd2fdd",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "epan/dissectors/packet-dcerpc-spoolss.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"298010196901880567694595881685154413246",
"13715668491719262197225572633528243110",
"132285535370253822438898364645332375712",
"272782551725918610663940902423898493040",
"132480464369185714228085515400071738377",
"76907846674498504687271616509398356837",
"279304938070741615783224985503381019728",
"80166203366629944788585972254424765246",
"280686706479441150384002388230459750075",
"68483232921460799288244297883573613721"
]
},
"signature_type": "Line"
}
]