Denial of Service : Wireshark MS-WSP Dissector Denial of Service Vulnerability (wnpa-sec-2018-47)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.814131

Categoría: Denial of Service

Título: Wireshark MS-WSP Dissector Denial of Service Vulnerability (wnpa-sec-2018-47) - Windows

Resumen: Wireshark is prone to a denial of service (DoS) vulnerability.

Descripción: Summary:
Wireshark is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
The flaw is due to an insufficient validation
of user-supplied input processed by Microsoft Windows Search Protocol (MS-WSP)
dissector component.

Vulnerability Impact:
Successful exploitation will allow attackers
to cause a denial of service (DoS) condition on a targeted system.

Affected Software/OS:
Wireshark version 2.6.0 to 2.6.3, 2.4.0 to 2.4.9 on Windows.

Solution:
Upgrade to Wireshark 2.6.4, 2.4.10 or later. Please see the references for more information.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2018-18227
BugTraq ID: 105583
http://www.securityfocus.com/bid/105583
Debian Security Information: DSA-4359 (Google Search)
https://www.debian.org/security/2018/dsa-4359
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15119
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=d443be449a52f95df5754adc39e1f3472fec2f03
https://www.oracle.com/security-alerts/cpuapr2020.html
https://www.wireshark.org/security/wnpa-sec-2018-47.html
http://www.securitytracker.com/id/1041909
SuSE Security Announcement: openSUSE-SU-2020:0362 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html

Copyright Copyright (C) 2018 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.814131
Categoría:	Denial of Service
Título:	Wireshark MS-WSP Dissector Denial of Service Vulnerability (wnpa-sec-2018-47) - Windows
Resumen:	Wireshark is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Wireshark is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw is due to an insufficient validation of user-supplied input processed by Microsoft Windows Search Protocol (MS-WSP) dissector component. Vulnerability Impact: Successful exploitation will allow attackers to cause a denial of service (DoS) condition on a targeted system. Affected Software/OS: Wireshark version 2.6.0 to 2.6.3, 2.4.0 to 2.4.9 on Windows. Solution: Upgrade to Wireshark 2.6.4, 2.4.10 or later. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2018-18227 BugTraq ID: 105583 http://www.securityfocus.com/bid/105583 Debian Security Information: DSA-4359 (Google Search) https://www.debian.org/security/2018/dsa-4359 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15119 https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=d443be449a52f95df5754adc39e1f3472fec2f03 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.wireshark.org/security/wnpa-sec-2018-47.html http://www.securitytracker.com/id/1041909 SuSE Security Announcement: openSUSE-SU-2020:0362 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html
Copyright	Copyright (C) 2018 Greenbone AG