Summary
This host is installed with Wireshark and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow attackers to conduct a DoS (Denial of Service) attack.
Impact Level: Application
Solution
Upgrade to Wireshark version 1.10.8 or later,
For updates refer to http://www.wireshark.org/download
Insight
Flaw is due to an error in 'dissect_frame' function in epan/dissectors/packet-frame.c within the frame metadissector.
Affected
Wireshark version 1.10.0 through 1.10.7 on Windows
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-4020 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- AVG Anti-Virus 'hcp://' Protocol Handler Remote Code Execution Vulnerability
- APC PowerChute Business Edition Unspecified Cross Site Scripting Vulnerability
- Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Mac OS X)
- Adobe Reader Privelege Escalation Vulnerability - Jul07 (Mac OS X)
- Apple Safari Webkit Multiple Vulnerabilities - June13 (Mac OS X)