Test ID:	1.3.6.1.4.1.25623.1.0.805395
Category:	Denial of Service
Title:	Wireshark Multiple Denial-of-Service Vulnerabilities-02 (Jun 2015) - Mac OS X
Summary:	Wireshark is prone to multiple denial of service vulnerabilities.
Description:	Summary: Wireshark is prone to multiple denial of service vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - The X11 dissector that is triggered when handling a specially crafted packet, which can result in a memory leak. - 'epan/dissectors/packet-wcp.c' in the WCP dissector improperly refers to previously processed bytes. - The IEEE 802.11 dissector that is triggered when handling a malformed packet, which can result in an infinite loop. Vulnerability Impact: Successful exploitation will allow remote attackers to conduct denial of service attack. Affected Software/OS: Wireshark version 1.10.x before 1.10.14 and 1.12.x before 1.12.5 on Mac OS X Solution: Upgrade to version 1.10.14 or 1.12.5 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3814 BugTraq ID: 74631 http://www.securityfocus.com/bid/74631 Debian Security Information: DSA-3277 (Google Search) http://www.debian.org/security/2015/dsa-3277 https://security.gentoo.org/glsa/201510-03 Common Vulnerability Exposure (CVE) ID: CVE-2015-3812 BugTraq ID: 74637 http://www.securityfocus.com/bid/74637 RedHat Security Advisories: RHSA-2017:0631 http://rhn.redhat.com/errata/RHSA-2017-0631.html Common Vulnerability Exposure (CVE) ID: CVE-2015-3811
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.