{"uuid": "ab64ab83-2025-4af4-9a36-8e5ad50adda9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0668", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/449", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-0668\n\ud83d\udd39 Description: Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.\n\ud83d\udccf Published: 2023-06-07T02:32:45.095Z\n\ud83d\udccf Modified: 2025-01-07T14:59:00.663Z\n\ud83d\udd17 References:\n1. https://takeonme.org/cves/CVE-2023-0668.html\n2. https://gitlab.com/wireshark/wireshark/-/issues/19087\n3. https://www.wireshark.org/docs/relnotes/wireshark-4.0.6.html\n4. https://www.wireshark.org/security/wnpa-sec-2023-19.html\n5. https://www.debian.org/security/2023/dsa-5429\n6. https://security.gentoo.org/glsa/202309-02", "creation_timestamp": "2025-01-07T15:39:59.000000Z"}