Denial of Service : Wireshark Denial of Service Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.903024

Categoría: Denial of Service

Título: Wireshark Denial of Service Vulnerability - Mac OS X

Resumen: Wireshark is prone to a denial of service (DoS) vulnerability.

Descripción: Summary:
Wireshark is prone to a denial of service (DoS) vulnerability.

Vulnerability Insight:
The flaw is due to uninitialized pointer during processing of a '.pcap'
file in the pcap-ng format.

Vulnerability Impact:
Successful exploitation could allow attackers to cause a denial of
service, execution of arbitrary code.

Affected Software/OS:
Wireshark version 1.5.0
Wireshark version 1.2.0 through 1.2.14
Wireshark version 1.4.0 through 1.4.3

Solution:
Upgrade to Wireshark version 1.2.15 or 1.4.4 or later.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-0538
1025148
http://www.securitytracker.com/id?1025148
43759
http://secunia.com/advisories/43759
43795
http://secunia.com/advisories/43795
43821
http://secunia.com/advisories/43821
46167
http://www.securityfocus.com/bid/46167
ADV-2011-0622
http://www.vupen.com/english/advisories/2011/0622
ADV-2011-0626
http://www.vupen.com/english/advisories/2011/0626
ADV-2011-0719
http://www.vupen.com/english/advisories/2011/0719
ADV-2011-0747
http://www.vupen.com/english/advisories/2011/0747
DSA-2201
http://www.debian.org/security/2011/dsa-2201
FEDORA-2011-2620
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.html
FEDORA-2011-2632
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.html
FEDORA-2011-2648
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.html
MDVSA-2011:044
http://www.mandriva.com/security/advisories?name=MDVSA-2011:044
RHSA-2011:0369
http://www.redhat.com/support/errata/RHSA-2011-0369.html
RHSA-2011:0370
http://www.redhat.com/support/errata/RHSA-2011-0370.html
VU#215900
http://www.kb.cert.org/vuls/id/215900
[oss-security] 20110204 Wireshark: Freeing uninitialized pointer
http://openwall.com/lists/oss-security/2011/02/04/1
http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html
http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html
http://www.wireshark.org/security/wnpa-sec-2011-03.html
http://www.wireshark.org/security/wnpa-sec-2011-04.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5652
https://bugzilla.redhat.com/show_bug.cgi?id=676232
oval:org.mitre.oval:def:14605
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14605
wireshark-pcap-code-execution(65182)
https://exchange.xforce.ibmcloud.com/vulnerabilities/65182

Copyright Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.903024
Categoría:	Denial of Service
Título:	Wireshark Denial of Service Vulnerability - Mac OS X
Resumen:	Wireshark is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Wireshark is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw is due to uninitialized pointer during processing of a '.pcap' file in the pcap-ng format. Vulnerability Impact: Successful exploitation could allow attackers to cause a denial of service, execution of arbitrary code. Affected Software/OS: Wireshark version 1.5.0 Wireshark version 1.2.0 through 1.2.14 Wireshark version 1.4.0 through 1.4.3 Solution: Upgrade to Wireshark version 1.2.15 or 1.4.4 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0538 1025148 http://www.securitytracker.com/id?1025148 43759 http://secunia.com/advisories/43759 43795 http://secunia.com/advisories/43795 43821 http://secunia.com/advisories/43821 46167 http://www.securityfocus.com/bid/46167 ADV-2011-0622 http://www.vupen.com/english/advisories/2011/0622 ADV-2011-0626 http://www.vupen.com/english/advisories/2011/0626 ADV-2011-0719 http://www.vupen.com/english/advisories/2011/0719 ADV-2011-0747 http://www.vupen.com/english/advisories/2011/0747 DSA-2201 http://www.debian.org/security/2011/dsa-2201 FEDORA-2011-2620 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055664.html FEDORA-2011-2632 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055650.html FEDORA-2011-2648 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055364.html MDVSA-2011:044 http://www.mandriva.com/security/advisories?name=MDVSA-2011:044 RHSA-2011:0369 http://www.redhat.com/support/errata/RHSA-2011-0369.html RHSA-2011:0370 http://www.redhat.com/support/errata/RHSA-2011-0370.html VU#215900 http://www.kb.cert.org/vuls/id/215900 [oss-security] 20110204 Wireshark: Freeing uninitialized pointer http://openwall.com/lists/oss-security/2011/02/04/1 http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html http://www.wireshark.org/security/wnpa-sec-2011-03.html http://www.wireshark.org/security/wnpa-sec-2011-04.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5652 https://bugzilla.redhat.com/show_bug.cgi?id=676232 oval:org.mitre.oval:def:14605 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14605 wireshark-pcap-code-execution(65182) https://exchange.xforce.ibmcloud.com/vulnerabilities/65182
Copyright	Copyright (C) 2012 Greenbone AG