Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.120046
Category:Amazon Linux Local Security Checks
Title:Amazon Linux: Security Advisory (ALAS-2014-330)
Summary:The remote host is missing an update announced via the referenced Security Advisory.
Description:Summary:
The remote host is missing an update announced via the referenced Security Advisory.

Vulnerability Insight:
Two flaws were found in Wireshark. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark. (CVE-2014-2281, CVE-2014-2299 )Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if it read a malformed packet off a network, or opened a malicious dump file. (CVE-2013-6336, CVE-2013-6337, CVE-2013-6338, CVE-2013-6339, CVE-2013-6340, CVE-2014-2283, CVE-2013-7112, CVE-2013-7114 )

Solution:
Run yum update wireshark to update your system.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2013-6339
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19086
RedHat Security Advisories: RHSA-2014:0342
http://rhn.redhat.com/errata/RHSA-2014-0342.html
SuSE Security Announcement: openSUSE-SU-2013:1671 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-11/msg00026.html
SuSE Security Announcement: openSUSE-SU-2013:1675 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-11/msg00027.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-6338
Debian Security Information: DSA-2792 (Google Search)
http://www.debian.org/security/2013/dsa-2792
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19145
Common Vulnerability Exposure (CVE) ID: CVE-2013-7112
http://www.mandriva.com/security/advisories?name=MDVSA-2013:296
RedHat Security Advisories: RHSA-2014:0341
http://rhn.redhat.com/errata/RHSA-2014-0341.html
http://secunia.com/advisories/56285
http://secunia.com/advisories/56313
SuSE Security Announcement: openSUSE-SU-2014:0013 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-01/msg00007.html
SuSE Security Announcement: openSUSE-SU-2014:0017 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-01/msg00011.html
SuSE Security Announcement: openSUSE-SU-2014:0020 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-01/msg00014.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-6337
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19329
Common Vulnerability Exposure (CVE) ID: CVE-2013-6336
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19193
Common Vulnerability Exposure (CVE) ID: CVE-2013-7114
Debian Security Information: DSA-2825 (Google Search)
http://www.debian.org/security/2013/dsa-2825
http://secunia.com/advisories/56052
Common Vulnerability Exposure (CVE) ID: CVE-2014-2299
BugTraq ID: 66066
http://www.securityfocus.com/bid/66066
Debian Security Information: DSA-2871 (Google Search)
http://www.debian.org/security/2014/dsa-2871
http://www.exploit-db.com/exploits/33069
http://packetstormsecurity.com/files/126337/Wireshark-1.8.12-1.10.5-wiretap-mpeg.c-Stack-Buffer-Overflow.html
http://osvdb.org/show/osvdb/104199
http://www.securitytracker.com/id/1029907
http://secunia.com/advisories/57480
http://secunia.com/advisories/57489
SuSE Security Announcement: openSUSE-SU-2014:0382 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00046.html
SuSE Security Announcement: openSUSE-SU-2014:0383 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00047.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-6340
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19298
Common Vulnerability Exposure (CVE) ID: CVE-2014-2281
Common Vulnerability Exposure (CVE) ID: CVE-2014-2283
CopyrightCopyright (C) 2015 Eero Volotinen

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2023 E-Soft Inc. All rights reserved.