Summary
This host is installed with Wireshark and is prone to IPMI Dissector Denial of Service vulnerability.
Impact
Successful exploitation will allow attackers to cause Denial of Serivce condition by tricking the user into reading a malformed packet trace file.
Impact Level: System/Application
Solution
Upgrade to Wireshark version 1.2.5,
http://www.wireshark.org/download.html
Insight
This flaw is due to an error in the IPMI dissector while formatting date/time using strftime.
Affected
Wireshark version 1.2.0 to 1.2.4 on Windows.
References
Severity
Classification
-
CVE CVE-2009-4378 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities