Denial of Service : Wireshark Security Update (wnpa-sec-2024-11)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.834462

Category: Denial of Service

Title: Wireshark Security Update (wnpa-sec-2024-11) - Mac OS X

Summary: Wireshark is prone to an use after free; vulnerability.

Description: Summary:
Wireshark is prone to an use after free
vulnerability.

Vulnerability Insight:
The flaw exists due to an issue in NTLMSSP
dissector.

Vulnerability Impact:
Successful exploitation allows an attacker
to cause denial of service.

Affected Software/OS:
Wireshark version 4.0.0 through 4.0.16
and 4.2.0 through 4.2.6 on Mac OS X.

Solution:
Update to version 4.0.17 or 4.2.7 or
later.

CVSS Score:
4.9

CVSS Vector:
AV:L/AC:L/Au:N/C:N/I:N/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2024-8250

Copyright Copyright (C) 2024 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.834462
Category:	Denial of Service
Title:	Wireshark Security Update (wnpa-sec-2024-11) - Mac OS X
Summary:	Wireshark is prone to an use after free; vulnerability.
Description:	Summary: Wireshark is prone to an use after free vulnerability. Vulnerability Insight: The flaw exists due to an issue in NTLMSSP dissector. Vulnerability Impact: Successful exploitation allows an attacker to cause denial of service. Affected Software/OS: Wireshark version 4.0.0 through 4.0.16 and 4.2.0 through 4.2.6 on Mac OS X. Solution: Update to version 4.0.17 or 4.2.7 or later. CVSS Score: 4.9 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2024-8250
Copyright	Copyright (C) 2024 Greenbone AG