| |||||||||||||
| Test ID: | 1.3.6.1.4.1.25623.1.0.901031 |
| Category: | Denial of Service |
| Title: | Wireshark Multiple Denial of Service Vulnerabilities (Win) |
| Summary: | Check for the version of Wireshark |
| Description: | Overview: This host is installed with Wireshark and is prone to multiple Denial of Service vulnerabilities. Vulnerability Insight: - An unspecified error in 'packet.c' in the GSM A RR dissector caused via unknown vectors related to 'an uninitialized dissector handle,' which triggers an assertion failure. - An unspecified error in the TLS dissector which can be exploited via unknown vectors related to TLS 1.2 conversations. Impact: Successful exploitation could result in Denial of Serivce condition. Impact Level: Application Affected Software/OS: Wireshark version 1.2.0 to 1.2.1 on Windows Fix: Upgrade to Wireshark 1.2.2 http://www.wireshark.org/download.html References: http://secunia.com/advisories/36754 http://www.wireshark.org/security/wnpa-sec-2009-06.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3893 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4008 |
| Cross-Ref: |
BugTraq ID: 36408 Common Vulnerability Exposure (CVE) ID: CVE-2009-3242 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3893 http://www.securityfocus.com/bid/36408 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5423 http://secunia.com/advisories/36754 http://secunia.com/advisories/37409 Common Vulnerability Exposure (CVE) ID: CVE-2009-3243 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4008 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6413 |
| Copyright | Copyright (C) 2009 SecPod |
| This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois
© 1998-2013 E-Soft Inc. All rights reserved.