Test ID:	1.3.6.1.4.1.25623.1.0.831721
Category:	Mandrake Local Security Checks
Title:	Mandriva Update for wireshark MDVSA-2012:134 (wireshark)
Summary:	The remote host is missing an update for the 'wireshark'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'wireshark' package(s) announced via the referenced advisory. Vulnerability Insight: Multiple vulnerabilities was found and corrected in Wireshark: The DCP ETSI dissector could trigger a zero division (CVE-2012-4285). The MongoDB dissector could go into a large loop (CVE-2012-4287). The XTP dissector could go into an infinite loop (CVE-2012-4288). The AFP dissector could go into a large loop (CVE-2012-4289). The RTPS2 dissector could overflow a buffer (CVE-2012-4296). The GSM RLC MAC dissector could overflow a buffer (CVE-2012-4297). The CIP dissector could exhaust system memory (CVE-2012-4291). The STUN dissector could crash (CVE-2012-4292). The EtherCAT Mailbox dissector could abort (CVE-2012-4293). The CTDB dissector could go into a large loop (CVE-2012-4290). This advisory provides the latest version of Wireshark (1.6.10) which is not vulnerable to these issues. Affected Software/OS: wireshark on Mandriva Linux 2011.0 Solution: Please Install the Updated Packages. CVSS Score: 8.3 CVSS Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-4285 BugTraq ID: 55035 http://www.securityfocus.com/bid/55035 http://www.gentoo.org/security/en/glsa/glsa-201308-05.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15712 RedHat Security Advisories: RHSA-2013:0125 http://rhn.redhat.com/errata/RHSA-2013-0125.html http://secunia.com/advisories/50276 http://secunia.com/advisories/51363 http://secunia.com/advisories/54425 SuSE Security Announcement: openSUSE-SU-2012:1035 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-08/msg00033.html SuSE Security Announcement: openSUSE-SU-2012:1067 (Google Search) https://hermes.opensuse.org/messages/15514562 Common Vulnerability Exposure (CVE) ID: CVE-2012-4287 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15818 Common Vulnerability Exposure (CVE) ID: CVE-2012-4288 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15789 Common Vulnerability Exposure (CVE) ID: CVE-2012-4289 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14963 Common Vulnerability Exposure (CVE) ID: CVE-2012-4296 Debian Security Information: DSA-2590 (Google Search) http://www.debian.org/security/2012/dsa-2590 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15583 Common Vulnerability Exposure (CVE) ID: CVE-2012-4297 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15741 Common Vulnerability Exposure (CVE) ID: CVE-2012-4291 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15813 Common Vulnerability Exposure (CVE) ID: CVE-2012-4292 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15158 Common Vulnerability Exposure (CVE) ID: CVE-2012-4293 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15527 Common Vulnerability Exposure (CVE) ID: CVE-2012-4290 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15619
Copyright	Copyright (C) 2012 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.