Test ID:	1.3.6.1.4.1.25623.1.0.60233
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDVSA-2008:001-1 (wireshark)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to wireshark announced via advisory MDVSA-2008:001-1. A number of vulnerabilities in the Wireshark program were found that could cause crashes, excessive looping, or arbitrary code execution. This update provides Wireshark 0.99.7 which is not vulnerable to these issues. An updated version of libsmi is also being provided, not because of security issues, but because this version of wireshark uses it instead of net-snmp for SNMP support. Update: This update is being reissued without libcap (kernel capabilities) support, as that is not required by the original released packages, and thus gave trouble for a number of users. Affected: 2007.0, 2007.1, 2008.0, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2008:001-1 http://www.wireshark.org/security/wnpa-sec-2007-03.html http://qa.mandriva.com/show_bug.cgi?id=36470 Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-6111 1018988 http://securitytracker.com/id?1018988 20080103 rPSA-2008-0004-1 tshark wireshark http://www.securityfocus.com/archive/1/485792/100/0/threaded 26532 http://www.securityfocus.com/bid/26532 27777 http://secunia.com/advisories/27777 28197 http://secunia.com/advisories/28197 28207 http://secunia.com/advisories/28207 28288 http://secunia.com/advisories/28288 28304 http://secunia.com/advisories/28304 28325 http://secunia.com/advisories/28325 28564 http://secunia.com/advisories/28564 29048 http://secunia.com/advisories/29048 ADV-2007-3956 http://www.vupen.com/english/advisories/2007/3956 FEDORA-2007-4590 https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00606.html FEDORA-2007-4690 https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00712.html GLSA-200712-23 http://security.gentoo.org/glsa/glsa-200712-23.xml MDVSA-2008:001 http://www.mandriva.com/security/advisories?name=MDVSA-2008:001 MDVSA-2008:1 http://www.mandriva.com/security/advisories?name=MDVSA-2008:1 RHSA-2008:0058 http://www.redhat.com/support/errata/RHSA-2008-0058.html SUSE-SR:2008:004 http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html http://bugs.gentoo.org/show_bug.cgi?id=199958 http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004 http://www.wireshark.org/security/wnpa-sec-2007-03.html https://issues.rpath.com/browse/RPL-1975 oval:org.mitre.oval:def:9048 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9048 Common Vulnerability Exposure (CVE) ID: CVE-2007-6112 oval:org.mitre.oval:def:14561 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14561 oval:org.mitre.oval:def:9772 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9772 Common Vulnerability Exposure (CVE) ID: CVE-2007-6113 1018635 http://www.securitytracker.com/id?1018635 20070904 Wireshark DNP3 Dissector Infinite Loop Vulnerability http://www.securityfocus.com/archive/1/478497/100/0/threaded 28583 http://secunia.com/advisories/28583 3095 http://securityreason.com/securityalert/3095 4347 https://www.exploit-db.com/exploits/4347 RHSA-2008:0059 http://www.redhat.com/support/errata/RHSA-2008-0059.html http://www.securiteam.com/securitynews/5LP0V00MAI.html oval:org.mitre.oval:def:9841 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9841 wireshark-dnp3-dos(36392) https://exchange.xforce.ibmcloud.com/vulnerabilities/36392 Common Vulnerability Exposure (CVE) ID: CVE-2007-6114 27817 http://secunia.com/advisories/27817 DSA-1414 http://www.debian.org/security/2007/dsa-1414 oval:org.mitre.oval:def:10708 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10708 Common Vulnerability Exposure (CVE) ID: CVE-2007-6115 oval:org.mitre.oval:def:14578 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14578 oval:org.mitre.oval:def:9726 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9726 Common Vulnerability Exposure (CVE) ID: CVE-2007-6116 oval:org.mitre.oval:def:15036 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15036 oval:org.mitre.oval:def:9799 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9799 Common Vulnerability Exposure (CVE) ID: CVE-2007-6117 http://www.wireshark.org/docs/relnotes/wireshark-0.99.7.html https://bugzilla.redhat.com/show_bug.cgi?id=397331 oval:org.mitre.oval:def:11508 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11508 Common Vulnerability Exposure (CVE) ID: CVE-2007-6118 oval:org.mitre.oval:def:10659 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10659 Common Vulnerability Exposure (CVE) ID: CVE-2007-6119 oval:org.mitre.oval:def:14721 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14721 oval:org.mitre.oval:def:9880 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9880 Common Vulnerability Exposure (CVE) ID: CVE-2007-6120 oval:org.mitre.oval:def:14802 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14802 oval:org.mitre.oval:def:9488 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9488 Common Vulnerability Exposure (CVE) ID: CVE-2007-6121 oval:org.mitre.oval:def:11374 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11374 Common Vulnerability Exposure (CVE) ID: CVE-2007-6438 27071 http://www.securityfocus.com/bid/27071 oval:org.mitre.oval:def:11785 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11785 oval:org.mitre.oval:def:14734 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14734 wireshark-smb-dissector-dos(39178) https://exchange.xforce.ibmcloud.com/vulnerabilities/39178 Common Vulnerability Exposure (CVE) ID: CVE-2007-6439 oval:org.mitre.oval:def:10331 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10331 oval:org.mitre.oval:def:15002 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15002 wireshark-ipv6-dissector-dos(39180) https://exchange.xforce.ibmcloud.com/vulnerabilities/39180 wireshark-usb-dissector-dos(39181) https://exchange.xforce.ibmcloud.com/vulnerabilities/39181 Common Vulnerability Exposure (CVE) ID: CVE-2007-6441 oval:org.mitre.oval:def:10452 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10452 oval:org.mitre.oval:def:14126 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14126 wireshark-wimax-dissector-dos(39183) https://exchange.xforce.ibmcloud.com/vulnerabilities/39183 Common Vulnerability Exposure (CVE) ID: CVE-2007-6450 28315 http://secunia.com/advisories/28315 DSA-1446 http://www.debian.org/security/2008/dsa-1446 oval:org.mitre.oval:def:11442 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11442 wireshark-rpl-dissector-dos(39186) https://exchange.xforce.ibmcloud.com/vulnerabilities/39186 Common Vulnerability Exposure (CVE) ID: CVE-2007-6451 oval:org.mitre.oval:def:9685 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9685 wireshark-cip-dissector-dos(39187) https://exchange.xforce.ibmcloud.com/vulnerabilities/39187
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.