epan/dissectors/packet-dcerpc-spoolss.c in the SPOOLS component in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles unexpected offsets, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
[ { "source": "https://github.com/wireshark/wireshark/commit/b4d16b4495b732888e12baf5b8a7e9bf2665e22b", "target": { "function": "dissect_spoolss_keybuffer", "file": "epan/dissectors/packet-dcerpc-spoolss.c" }, "id": "CVE-2016-5350-3d8726e1", "deprecated": false, "digest": { "function_hash": "6785783194059742284134532502584093970", "length": 498.0 }, "signature_version": "v1", "signature_type": "Function" }, { "source": "https://github.com/wireshark/wireshark/commit/b4d16b4495b732888e12baf5b8a7e9bf2665e22b", "target": { "file": "epan/dissectors/packet-dcerpc-spoolss.c" }, "id": "CVE-2016-5350-ecdd2fdd", "deprecated": false, "digest": { "line_hashes": [ "298010196901880567694595881685154413246", "13715668491719262197225572633528243110", "132285535370253822438898364645332375712", "272782551725918610663940902423898493040", "132480464369185714228085515400071738377", "76907846674498504687271616509398356837", "279304938070741615783224985503381019728", "80166203366629944788585972254424765246", "280686706479441150384002388230459750075", "68483232921460799288244297883573613721" ], "threshold": 0.9 }, "signature_version": "v1", "signature_type": "Line" } ]