Test ID:	1.3.6.1.4.1.25623.1.0.809803
Category:	Denial of Service
Title:	Wireshark Multiple Denial of Service Vulnerabilities (Nov 2016) - Windows
Summary:	Wireshark is prone to multiple denial of service vulnerabilities.
Description:	Summary: Wireshark is prone to multiple denial of service vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - The AllJoyn dissector could crash with a buffer over-read, triggered by network traffic or a capture file. - The DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. - The DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. - The OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. Vulnerability Impact: Successful exploitation will allow remote attackers to conduct denial of service attack. Affected Software/OS: Wireshark version 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7 on Windows. Solution: Upgrade to Wireshark version 2.2.2 or or 2.0.8 later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9374 BugTraq ID: 94369 http://www.securityfocus.com/bid/94369 Debian Security Information: DSA-3719 (Google Search) http://www.debian.org/security/2016/dsa-3719 http://www.securitytracker.com/id/1037313 Common Vulnerability Exposure (CVE) ID: CVE-2016-9376 Common Vulnerability Exposure (CVE) ID: CVE-2016-9373 Common Vulnerability Exposure (CVE) ID: CVE-2016-9375
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.