Debian Security Advisory DSA 2144-1 (wireshark) Network Vulnerability

Summary

The remote host is missing an update to wireshark announced via advisory DSA 2144-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202144-1

Insight

It was discovered that a buffer overflow in the ENTTEC dissector may lead to the execution of arbitrary code. For the stable distribution (lenny), this problem has been fixed in version 1.0.2-3+lenny12. For the testing distribution (squeeze), this problem has been fixed in version 1.2.11-6. For the unstable distribution (sid), this problem has been fixed in version 1.2.11-6. We recommend that you upgrade your wireshark packages.

Severity

Classification

CVE CVE-2010-4538

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 059-1 (man-db)
Debian Security Advisory DSA 075-1 (netkit-telnet-ssl)
Debian Security Advisory DSA 034-1 (ePerl)
Debian Security Advisory DSA 013-1 (mysql)
Debian Security Advisory DSA 102-2 (at)

Take action and discover your vulnerabilities