Wireshark MAC-LTE Dissector Buffer Overflow Vulnerability (Win) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to buffer overflow vulnerability.

Impact

Successful exploitation will allow attackers to create a denial of service or execute arbitrary code. Impact Level: Application

Solution

Upgrade to the latest version of Wireshark 1.4.3 or later, For updates refer to http://www.wireshark.org/download

Insight

The flaw is caused by a buffer overflow error in the MAC-LTE dissector, which could be exploited to crash an affected application or compromise a vulnerable system.

Affected

Wireshark versions 1.2.0 through 1.2.13 and 1.4.0 through 1.4.2

References

http://osvdb.org/70403
http://www.vupen.com/english/advisories/2011/0079
http://www.wireshark.org/security/wnpa-sec-2011-02.html
http://xforce.iss.net/xforce/xfdb/64624
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5530

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0444

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
BigAntSoft BigAnt IM Message Server Multiple Vulnerabilities
BS.Player '.bsl' File Buffer Overflow Vulnerabilities
Cyrus IMAP Server 'split_wildmats()' Remote Buffer Overflow Vulnerability
ClamAV 'find_stream_bounds()' function Buffer Overflow Vulnerability

Wireshark MAC-LTE dissector Buffer Overflow Vulnerability (Win)

Take action and discover your vulnerabilities