wireshark is vulnerable to arbitrary code execution. A heap-based buffer overflow flaw was found in the Wireshark MAC-LTE dissector. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark.
lists.fedoraproject.org/pipermail/package-announce/2011-February/053650.html
lists.fedoraproject.org/pipermail/package-announce/2011-February/053669.html
osvdb.org/70403
secunia.com/advisories/43175
www.mandriva.com/security/advisories?name=MDVSA-2011:007
www.redhat.com/support/errata/RHSA-2011-0369.html
www.securityfocus.com/bid/45775
www.vupen.com/english/advisories/2011/0079
www.vupen.com/english/advisories/2011/0104
www.vupen.com/english/advisories/2011/0270
www.vupen.com/english/advisories/2011/0719
www.wireshark.org/security/wnpa-sec-2011-01.html
www.wireshark.org/security/wnpa-sec-2011-02.html
www.wireshark.org/security/wnpa-sec-2011-03.html
access.redhat.com/errata/RHSA-2011:0369
access.redhat.com/security/updates/classification/#moderate
bugs.wireshark.org/bugzilla/attachment.cgi?id=5676
bugs.wireshark.org/bugzilla/show_bug.cgi?id=5530
exchange.xforce.ibmcloud.com/vulnerabilities/64624
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14283