CVE-2014-6429
Description
A memory access flaw in Wireshark's SnifferDecompress function allows remote attackers to crash the application by delivering a crafted Sniffer capture file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A memory access flaw in Wireshark's SnifferDecompress function allows remote attackers to crash the application by delivering a crafted Sniffer capture file.
Vulnerability
The SnifferDecompress function in wiretap/ngsniffer.c within the DOS Sniffer file parser of Wireshark mishandles empty input data, leading to an invalid memory access. Affected versions include 1.10.x before 1.10.10 and 1.12.x before 1.12.1 [3].
Exploitation
An attacker can trigger the crash by convincing a Wireshark user to open a specially crafted Sniffer packet trace file. The user must explicitly load the file; no special network position or authentication is required beyond delivering the file via email, download, or other means [3].
Impact
Successful exploitation causes the Wireshark application to crash, resulting in a denial of service. No code execution or data compromise has been disclosed [3] [4].
Mitigation
Fixed versions are Wireshark 1.12.1 and 1.10.10, released on or around September 16, 2014 [3]. Red Hat Enterprise Linux 6 and 7 also delivered updated packages (wireshark-1.8.10-8.el6_6 and wireshark-1.10.3-12.el7_0) [1] [2]. Users unable to upgrade should avoid opening Sniffer capture files from untrusted sources.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
13cpe:2.3:a:wireshark:wireshark:1.10.0:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:wireshark:wireshark:1.10.0:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.1:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.2:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.3:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.4:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.5:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.6:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.7:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.8:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.10.9:*:*:*:*:*:*:*
- cpe:2.3:a:wireshark:wireshark:1.12.0:*:*:*:*:*:*:*
- (no CPE)range: <=1.10.9, <=1.12.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- linux.oracle.com/errata/ELSA-2014-1676nvd
- linux.oracle.com/errata/ELSA-2014-1677nvd
- lists.opensuse.org/opensuse-security-announce/2014-09/msg00033.htmlnvd
- lists.opensuse.org/opensuse-updates/2014-09/msg00058.htmlnvd
- rhn.redhat.com/errata/RHSA-2014-1676.htmlnvd
- rhn.redhat.com/errata/RHSA-2014-1677.htmlnvd
- secunia.com/advisories/60280nvd
- secunia.com/advisories/60578nvd
- secunia.com/advisories/61929nvd
- secunia.com/advisories/61933nvd
- www.debian.org/security/2014/dsa-3049nvd
- www.wireshark.org/security/wnpa-sec-2014-19.htmlnvd
- bugs.wireshark.org/bugzilla/show_bug.cginvd
- code.wireshark.org/review/gitwebnvd
News mentions
0No linked articles in our index yet.