 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.806947 |
| Categoría: | Denial of Service |
| Título: | Wireshark Multiple Denial-of-Service Vulnerabilities-03 (Jan 2016) - Windows |
| Resumen: | Wireshark is prone to multiple denial of service vulnerabilities. |
| Descripción: | Summary: Wireshark is prone to multiple denial of service vulnerabilities. Vulnerability Insight: Multiple flaws exist due to - 'init_t38_info_conv' function in 'epan/dissectors/packet-t38.c' script in the T.38 dissector does not ensure that a conversation exists. - 'epan/dissectors/packet-alljoyn.c' in the AllJoyn dissector does not check for empty arguments. - 'dissect_dcom_OBJREF' function in 'epan/dissectors/packet-dcom.c' script in the DCOM dissecto does not initialize a certain IPv4 data structure. - 'epan/dissectors/packet-umts_fp.c' script in the UMTS FP dissector does not properly reserve memory for channel ID mappings. - 'dissect_dns_answer' function in 'epan/dissectors/packet-dns.c' script in the DNS dissector mishandles the EDNS0 Client Subnet option. - 'dissect_sdp' function in 'epan/dissectors/packet-sdp.c' script in the SDP dissector does not prevent use of a negative media count. - 'dissect_hsdsch_channel_info' function in 'epan/dissectors/packet-umts_fp.c' script in the UMTS FP dissector does not validate the number of PDUs. Vulnerability Impact: Successful exploitation will allow remote attackers to conduct denial of service attack. Affected Software/OS: Wireshark version 1.12.x before 1.12.9 on Windows Solution: Upgrade to Wireshark version 1.12.9 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2015-8716 BugTraq ID: 79816 http://www.securityfocus.com/bid/79816 Debian Security Information: DSA-3505 (Google Search) http://www.debian.org/security/2016/dsa-3505 https://security.gentoo.org/glsa/201604-05 http://www.securitytracker.com/id/1034551 Common Vulnerability Exposure (CVE) ID: CVE-2015-8715 Common Vulnerability Exposure (CVE) ID: CVE-2015-8714 Common Vulnerability Exposure (CVE) ID: CVE-2015-8713 Common Vulnerability Exposure (CVE) ID: CVE-2015-8719 Common Vulnerability Exposure (CVE) ID: CVE-2015-8717 Common Vulnerability Exposure (CVE) ID: CVE-2015-8712 |
| Copyright | Copyright (C) 2016 Greenbone AG |
| Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |