Anfälligkeitssuche        Suche in 324607 CVE Beschreibungen
und 145615 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.802759
Kategorie:Denial of Service
Titel:Wireshark Multiple Denial of Service Vulnerabilities (Apr 2012) - Windows
Zusammenfassung:Wireshark is prone to multiple denial of service vulnerabilities.
Beschreibung:Summary:
Wireshark is prone to multiple denial of service vulnerabilities.

Vulnerability Insight:
The flaws are due to

- A NULL pointer dereference error in the ANSI A dissector can be exploited
to cause a crash via a specially crafted packet.

- An error in the MP2T dissector when allocating memory can be exploited to
cause a crash via a specially crafted packet.

- An error exists in the pcap and pcap-ng file parsers when reading ERF data
and can cause a crash via a specially crafted trace file.

Vulnerability Impact:
Successful exploitation will allow remote attackers to cause a denial of
service.

Affected Software/OS:
Wireshark versions 1.4.x before 1.4.12 and 1.6.x before 1.6.6 on Windows

Solution:
Upgrade to the Wireshark version 1.4.12, 1.6.6 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2012-1596
1026874
http://www.securitytracker.com/id?1026874
48548
http://secunia.com/advisories/48548
48986
http://secunia.com/advisories/48986
52736
http://www.securityfocus.com/bid/52736
FEDORA-2012-5243
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078770.html
FEDORA-2012-5256
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078769.html
[oss-security] 20120328 Re: CVE Request: Multiple wireshark security flaws resolved in 1.4.12 and 1.6.6
http://www.openwall.com/lists/oss-security/2012/03/28/13
http://anonsvn.wireshark.org/viewvc?view=revision&revision=41001
http://www.wireshark.org/security/wnpa-sec-2012-07.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6833
openSUSE-SU-2012:0558
http://lists.opensuse.org/opensuse-updates/2012-04/msg00060.html
oval:org.mitre.oval:def:15194
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15194
wireshark-mp2t-dos(74363)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74363
Common Vulnerability Exposure (CVE) ID: CVE-2012-1595
48947
http://secunia.com/advisories/48947
52737
http://www.securityfocus.com/bid/52737
http://anonsvn.wireshark.org/viewvc?view=revision&revision=41008
http://www.wireshark.org/news/20120327.html
http://www.wireshark.org/security/wnpa-sec-2012-06.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6804
oval:org.mitre.oval:def:15548
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15548
wireshark-pcap-dos(74364)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74364
Common Vulnerability Exposure (CVE) ID: CVE-2012-1593
18758
http://www.exploit-db.com/exploits/18758
http://anonsvn.wireshark.org/viewvc?view=revision&revision=40962
http://www.wireshark.org/security/wnpa-sec-2012-04.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6823
oval:org.mitre.oval:def:14991
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14991
wireshark-ansia-dos(74361)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74361
CopyrightCopyright (C) 2012 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2025 E-Soft Inc. Alle Rechte vorbehalten.