Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted capture file.
https://bugzilla.redhat.com/show_bug.cgi?id=671331
http://www.vupen.com/english/advisories/2011/0719