Denial of Service : Wireshark Multiple Vulnerabilities (Jun 2013)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.803655
Category:	Denial of Service
Title:	Wireshark Multiple Vulnerabilities (Jun 2013) - Mac OS X
Summary:	Wireshark is prone to multiple vulnerabilities.
Description:	Summary: Wireshark is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws due to errors in, - 'epan/dissectors/packet-gmr1_bcch.c' in GMR-1 BCCH dissector - dissect_iphc_crtp_fh() function in 'epan/dissectors/packet-ppp.c' in PPP dissector - Array index error in NBAP dissector - 'epan/dissectors/packet-rdp.c' in the RDP dissector - dissect_schedule_message() function in 'epan/dissectors/packet-gsm_cbch.c' in GSM CBCH dissector - dissect_r3_upstreamcommand_queryconfig() function in 'epan/dissectors/packet-assa_r3.c' in Assa Abloy R3 dissector - vwr_read() function in 'wiretap/vwr.c' in Ixia IxVeriWave file parser. Vulnerability Impact: Successful exploitation will allow remote attackers to cause application crash, consume memory or heap-based buffer overflow. Affected Software/OS: Wireshark 1.8.x before 1.8.8 on Mac OS X. Solution: Upgrade to the Wireshark version 1.8.8 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4082 Debian Security Information: DSA-2709 (Google Search) http://www.debian.org/security/2013/dsa-2709 http://www.gentoo.org/security/en/glsa/glsa-201308-05.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16886 http://secunia.com/advisories/53762 http://secunia.com/advisories/54425 SuSE Security Announcement: openSUSE-SU-2013:1084 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-06/msg00194.html SuSE Security Announcement: openSUSE-SU-2013:1086 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-06/msg00196.html Common Vulnerability Exposure (CVE) ID: CVE-2013-4080 BugTraq ID: 60503 http://www.securityfocus.com/bid/60503 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16873 Common Vulnerability Exposure (CVE) ID: CVE-2013-4079 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16691 Common Vulnerability Exposure (CVE) ID: CVE-2013-4078 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16936 Common Vulnerability Exposure (CVE) ID: CVE-2013-4077 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16829 Common Vulnerability Exposure (CVE) ID: CVE-2013-4076 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16676 Common Vulnerability Exposure (CVE) ID: CVE-2013-4075 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16859 RedHat Security Advisories: RHSA-2017:0631 http://rhn.redhat.com/errata/RHSA-2017-0631.html
Copyright	Copyright (C) 2013 Greenbone AG