Wireshark Daintree SNA File Parser Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to Denial of Service vulnerability.

Impact

Successful exploitation will allow attackers to cause Denial of Serivce condition by tricking the user into opening a malformed packet trace file through Wireshark. Impact Level: System/Application.

Solution

Upgrade to Wireshark version 1.2.5, http://www.wireshark.org/download.html

Insight

A boundary error occurs in the 'daintree_sna_read()' function in the Daintree SNA file parser while processing malformed captured pcap files.

Affected

Wireshark version 1.2.0 to 1.2.4 on Linux.

References

http://secunia.com/advisories/37842
http://www.vupen.com/english/advisories/2009/3596
http://www.wireshark.org/security/wnpa-sec-2009-09.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4294

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4376

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Reader '.ETD File' Denial of Service Vulnerability (Mac OS X)
CesarFTP MKD Command Buffer Overflow
Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Linux)
7T Interactive Graphical SCADA System 'dc.exe' Command Injection Vulnerability
Asterisk PBX NULL Pointer Dereference Overflow

Wireshark Daintree SNA File Parser Denial of Service Vulnerability (Linux)

Take action and discover your vulnerabilities