Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Wireshark 1.0.4 released

Published: 2008-10-21
Last Updated: 2008-10-21 12:02:23 UTC
by Johannes Ullrich (Version: 1)
0 comment(s)

Wireshark, our all-time favorite protocol analyzer, released a new version (1.0.4). The new version includes a number of security fixes. For details, see

Just by its nature of including a large number of protocol parsers, Wireshark is a somewhat risky program. To mitigate the risk, I personally prefer to collect traffic using a simpler program like tcpdump, and later analyze the traffic in wireshark using a low privilege account.

Johannes B. Ullrich, Ph.D.
SANS Technology Institute

Keywords: patches wireshark
0 comment(s)
Diary Archives