ID de Prueba:	1.3.6.1.4.1.25623.1.0.802759
Categoría:	Denial of Service
Título:	Wireshark Multiple Denial of Service Vulnerabilities (Apr 2012) - Windows
Resumen:	Wireshark is prone to multiple denial of service vulnerabilities.
Descripción:	Summary: Wireshark is prone to multiple denial of service vulnerabilities. Vulnerability Insight: The flaws are due to - A NULL pointer dereference error in the ANSI A dissector can be exploited to cause a crash via a specially crafted packet. - An error in the MP2T dissector when allocating memory can be exploited to cause a crash via a specially crafted packet. - An error exists in the pcap and pcap-ng file parsers when reading ERF data and can cause a crash via a specially crafted trace file. Vulnerability Impact: Successful exploitation will allow remote attackers to cause a denial of service. Affected Software/OS: Wireshark versions 1.4.x before 1.4.12 and 1.6.x before 1.6.6 on Windows Solution: Upgrade to the Wireshark version 1.4.12, 1.6.6 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-1596 1026874 http://www.securitytracker.com/id?1026874 48548 http://secunia.com/advisories/48548 48986 http://secunia.com/advisories/48986 52736 http://www.securityfocus.com/bid/52736 FEDORA-2012-5243 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078770.html FEDORA-2012-5256 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078769.html [oss-security] 20120328 Re: CVE Request: Multiple wireshark security flaws resolved in 1.4.12 and 1.6.6 http://www.openwall.com/lists/oss-security/2012/03/28/13 http://anonsvn.wireshark.org/viewvc?view=revision&revision=41001 http://www.wireshark.org/security/wnpa-sec-2012-07.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6833 openSUSE-SU-2012:0558 http://lists.opensuse.org/opensuse-updates/2012-04/msg00060.html oval:org.mitre.oval:def:15194 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15194 wireshark-mp2t-dos(74363) https://exchange.xforce.ibmcloud.com/vulnerabilities/74363 Common Vulnerability Exposure (CVE) ID: CVE-2012-1595 48947 http://secunia.com/advisories/48947 52737 http://www.securityfocus.com/bid/52737 http://anonsvn.wireshark.org/viewvc?view=revision&revision=41008 http://www.wireshark.org/news/20120327.html http://www.wireshark.org/security/wnpa-sec-2012-06.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6804 oval:org.mitre.oval:def:15548 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15548 wireshark-pcap-dos(74364) https://exchange.xforce.ibmcloud.com/vulnerabilities/74364 Common Vulnerability Exposure (CVE) ID: CVE-2012-1593 18758 http://www.exploit-db.com/exploits/18758 http://anonsvn.wireshark.org/viewvc?view=revision&revision=40962 http://www.wireshark.org/security/wnpa-sec-2012-04.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6823 oval:org.mitre.oval:def:14991 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14991 wireshark-ansia-dos(74361) https://exchange.xforce.ibmcloud.com/vulnerabilities/74361
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.