Wireshark is the world's foremost network protocol analyzer, and is the de facto standard across many industries and educational institutions.

• Deep inspection of hundreds of protocols, with more being added all the time
• Live capture and offline analysis
• Standard three-pane packet browser
• Multi-platform: Runs on Windows, Linux, OS X, Solaris, FreeBSD, NetBSD, and many others
• Captured network data can be browsed via a GUI, or via the TTY-mode TShark utility
• The most powerful display filters in the industry
• Rich VoIP analysis
• Read/write many different capture file formats
• Capture files compressed with gzip can be decompressed on the fly
• Live data can be read from Ethernet, IEEE 802.11, PPP/HDLC, ATM, Bluetooth, USB, Token Ring, Frame Relay, FDDI, and others (depending on your platfrom)
• Decryption support for many protocols, including IPsec, ISAKMP, Kerberos, SNMPv3, SSL/TLS, WEP, and WPA/WPA2
• Coloring rules can be applied to the packet list for quick, intuitive analysis
• Output can be exported to XML, PostScript®, CSV, or plain text

Change Log:

Bug Fixes:

· wnpa-sec-2012-08
· Infinite and large loops in the ANSI MAP, ASF, BACapp, Bluetooth HCI, IEEE 802.11, IEEE 802.3, LTP, and R3 dissectors have been fixed. Discovered by Laurent Butti. (Bugs 6805, 7118, 7119, 7120, 7121, 7122, 7124, 7125)
· Versions affected: 1.4.0 to 1.4.12, 1.6.0 to 1.6.7.

· wnpa-sec-2012-09
· The DIAMETER dissector could try to allocate memory improperly and crash. (Bug 7138)
· Versions affected: 1.4.0 to 1.4.12, 1.6.0 to 1.6.7.

· wnpa-sec-2012-10
· Wireshark could crash on SPARC processors due to misaligned memory. Discovered by Klaus Heckelmann. (Bug 7221)
· Versions affected: 1.4.0 to 1.4.12, 1.6.0 to 1.6.7.

The following bugs have been fixed:

· User-Password - PAP decoding passwords longer than 16 bytes. (Bug 6779)
· The MSISDN is not seen correctly in GTP packet. (Bug 7042)
· Wireshark doesn't calculate the right IPv4 destination using source routing options when bad options precede them. (Bug 7043)
· BOOTP dissector issue with DHCP option 82 - suboption 9. (Bug 7047)
· MPLS dissector in 1.6.7 and 1.7.1 misdecodes some MPLS CW packets. (Bug 7089)
· ANSI MAP infinite loop. (Bug 7119)
· HCIEVT infinite loop. (Bug 7122)
· Wireshark doesn't decode NFSv4.1 operations. (Bug 7127)
· LTP infinite loop. (Bug 7124)
· Wrong values in DNS CERT RR. (Bug 7130)
· Megaco parser problem with LF in header. (Bug 7198)
· OPC UA bytestring node id decoding is wrong. (Bug 7226)

Updated Protocol Support:

· ANSI MAP, ASF, BACapp, Bluetooth HCI, DHCP, DIAMETER, DNS, GTP, IEEE 802.11, IEEE 802.3, IPv4, LTP, Megaco, MPLS, NFS, OPC UA, RADIUS

New and Updated Capture File Support:

· 5View, CSIDS, pcap, pcap-ng

Developer:

Wireshark.org -  (Open Source)




                                                         (32-bit, 18.69MB)





                                                         (64-bit, 21.72MB)