Excessive Looping Vulnerability in Wireshark Profinet I/O Dissector (Versions 2.2.0 to 2.2.1)

Excessive Looping Vulnerability in Wireshark Profinet I/O Dissector (Versions 2.2.0 to 2.2.1)

CVE-2016-9372 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

In Wireshark 2.2.0 to 2.2.1, the Profinet I/O dissector could loop excessively, triggered by network traffic or a capture file. This was addressed in plugins/profinet/packet-pn-rtc-one.c by rejecting input with too many I/O objects.

Learn more about our Network Penetration Testing.