Denial of Service : Wireshark Multiple Denial of Service Vulnerabilities-03 (Aug 2016)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.808289

Categoría: Denial of Service

Título: Wireshark Multiple Denial of Service Vulnerabilities-03 (Aug 2016) - Windows

Resumen: Wireshark is prone to multiple denial of service vulnerabilities.

Descripción: Summary:
Wireshark is prone to multiple denial of service vulnerabilities.

Vulnerability Insight:
Multiple flaws exist due to:

- An error in 'epan/dissectors/packet-mmse.c' script could cause the
MMSE dissector to go into a long loop.

- The 'epan/dissectors/packet-ncp2222.inc' script in the NDS dissector
does not properly maintain a ptvc data structure.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to conduct denial of service attack.

Affected Software/OS:
Wireshark version 1.12.x before 1.12.13
on Windows.

Solution:
Upgrade to Wireshark version 1.12.13
or later.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-6507
Debian Security Information: DSA-3648 (Google Search)
http://www.debian.org/security/2016/dsa-3648
http://openwall.com/lists/oss-security/2016/07/28/3
http://www.securitytracker.com/id/1036480
Common Vulnerability Exposure (CVE) ID: CVE-2016-6504
BugTraq ID: 92164
http://www.securityfocus.com/bid/92164
https://www.exploit-db.com/exploits/40194/

Copyright Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.808289
Categoría:	Denial of Service
Título:	Wireshark Multiple Denial of Service Vulnerabilities-03 (Aug 2016) - Windows
Resumen:	Wireshark is prone to multiple denial of service vulnerabilities.
Descripción:	Summary: Wireshark is prone to multiple denial of service vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - An error in 'epan/dissectors/packet-mmse.c' script could cause the MMSE dissector to go into a long loop. - The 'epan/dissectors/packet-ncp2222.inc' script in the NDS dissector does not properly maintain a ptvc data structure. Vulnerability Impact: Successful exploitation will allow remote attackers to conduct denial of service attack. Affected Software/OS: Wireshark version 1.12.x before 1.12.13 on Windows. Solution: Upgrade to Wireshark version 1.12.13 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-6507 Debian Security Information: DSA-3648 (Google Search) http://www.debian.org/security/2016/dsa-3648 http://openwall.com/lists/oss-security/2016/07/28/3 http://www.securitytracker.com/id/1036480 Common Vulnerability Exposure (CVE) ID: CVE-2016-6504 BugTraq ID: 92164 http://www.securityfocus.com/bid/92164 https://www.exploit-db.com/exploits/40194/
Copyright	Copyright (C) 2016 Greenbone AG