5 Wireshark 0.99.5 has been released.
7 ------------------------------------------------------------------
11 Wireshark is the world's most popular network protocol analyzer.
12 It is used for troubleshooting, analysis, development, and
19 The following vulnerabilities have been fixed. See the [1]security
20 advisory for details and a workaround.
22 o The TCP dissector could hang or crash while reassembling HTTP
23 packets. Versions affected: 0.99.2 to 0.99.4
25 o The HTTP dissector could crash. Versions affected: 0.99.3 to
28 o On some systems, the IEEE 802.11 dissector could crash.
29 Versions affected: 0.10.14 to 0.99.4
31 o On some systems, the LLT dissector could crash. Versions
32 affected: 0.99.3 to 0.99.4
34 The following bugs have been fixed:
36 o On Windows systems the packet list scroll bar could sometimes
37 disappear or become unusable. ([2]Bug 220)
39 o The end of HTTP chunked encoding wasn't being displayed.
42 o The Follow TCP Stream window could omit characters. ([4]Bug
45 o Opening a flow graph could crash Wireshark. ([5]Bug 1117)
47 o Follow TCP Stream would sometimes get the direction wrong.
50 o The foreground text in the coloring rules editor was always
53 o The CSV export format was incorrect. ([8]Bug 1173)
55 o On some Windows systems Wireshark could take a long time to
58 o Malformed UDLD packets could cause an exception.
60 New and Updated Features
62 The following features are new (or have been significantly
63 updated) since the last release:
65 o We are now offering Wireshark as a [16]U3 package for Windows.
66 U3 packages are suitable for using on special "U3" USB drives.
67 It's still experimental, but you're welcome to try it out and
68 report any problems or successes.
70 o Decryption support for WPA/WPA2 and SNMPv3 has been added. The
71 TDS / MS SQL dissector now de-obfuscates passwords.
73 o 64-bit file handling has been improved.
75 o The Find function now selects the corresponding packet detail
76 item. Find functionality has been added to the TCP and SSL
79 o Main window keyboard navigation has been improved.
81 o Windows file dialogs now show the "places bar" (Desktop, ...).
82 File dialogs now default to "My Documents" in accordance with
85 o [9]AirPcap support (which provides raw mode capture under
86 Windows) has been enhanced to allow capturing on multiple
87 AirPcap adapters simultaneously.
89 o You can no longer install Wireshark on Windows 95, 98, or ME.
90 (OK, so it's not a feature per se, but it's an important
91 change). The last Version known to work on these systems is
94 o ASN.1 BER-encoded files can now be dissected according to a
95 user-specified syntax.
99 DMP, Homeplug (INT51X1), NBD, OMAPI, PKCS#12, RGMP, Roofnet, STUN
102 Updated Protocol Support
104 2dparityfec, ACN, AIM, AMR, ANSI 637, ANSI A, ANSI MAP, ARP, ASN.1
105 BER, ASN.1 PER, BACapp, BPDU, CAMEL, DCERPC (DCERPC, EFS,
106 EVENTLOG, NSPI, PN-IO, WINREG), DCOM CBA, DCP, DHCP, DHCPv6, DMP,
107 DNS, E.164, EAP, EPL, ETSI DCP, FCP, GIOP, GSM A, H.245, H.248,
108 HPSW, HTTP, ICMP, ICMPv6, IEEE 802.11, IMAP, INAP, IPMI, IPsec,
109 IRC, ISAKMP, iSCSI, ISIS LSP, IuUP, K12, Kerberos, LDAP, LLDP,
110 MEGACO, MGCP, MIME Multipart, MMS, MMSE, MSRP, MySQL, NetFlow,
111 NFS, NTLMSSP, NTP, OSPF, PN-PTCP, PPPoE, Q.931, Radiotap, RADIUS,
112 RPC, RSVP, RTCP, S4406, SCCP, SCSI, SDP, SES, sFlow, SIGCOMP, SIP,
113 SIR, Skinny, SMB (SMB, NETLOGON), SMTP, SNMP, SPNEGO, SSL, T.38,
114 TCP, TDS, text/media, TIPC, UDLD, UDP Lite, UDP, UMA, UMTS FP,
115 USB, VNC, WBXML, WLCCP, WSP, X.411, X.420, XML, XOT, YMSG
117 New and Updated Capture File Support
119 Catapult DCT2000, Netttl, Windows Sniffer / NetXray
123 Wireshark source code and installation packages are available from
124 the [10]download page on the main web site.
126 Vendor-supplied Packages
128 Most Linux and Unix vendors supply their own Wireshark packages.
129 You can usually install or upgrade Wireshark using the package
130 management system specific to that platform. A list of third-party
131 packages can be found on the [11]download page on the Wireshark
136 Wireshark and TShark look in several different locations for
137 preference files, plugins, SNMP MIBS, and RADIUS dictionaries.
138 These locations vary from platform to platform. You can use
139 About->Folders to find the default locations on your system.
143 The Filter button is nonfunctional in the file dialogs under
144 Windows. ([12]Bug 942)
148 Community support is available on the wireshark-users mailing
149 list. Subscription information and archives for all of Wireshark's
150 mailing lists can be found on [13]the web site.
152 Commercial support, training, and development services are
153 available from [14]CACE Technologies.
155 Frequently Asked Questions
157 A complete FAQ is available on the [15]Wireshark web site.
162 1. http://www.wireshark.org/security/wnpa-sec-2007-01.html
163 2. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=220
164 3. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=646
165 4. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1043
166 5. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1117
167 6. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1138
168 7. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1164
169 8. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1173
170 9. http://www.cacetech.com/products/airpcap.htm
171 10. http://www.wireshark.org/download.html
172 11. http://www.wireshark.org/download.html#otherplat
173 12. http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=942
174 13. http://www.wireshark.org/lists/
175 14. http://www.cacetech.com/
176 15. http://www.wireshark.org/faq.html
177 16. http://www.u3.com
178 17. http://www.ethereal.com