Summary
This host is installed with Wireshark and is prone to multiple Buffer Overflow vulnerabilities.
Impact
Successful exploitation allows attackers to crash an affected application or potentially execute arbitrary code.
Impact Level: Application.
Solution
Upgrade to Wireshark 1.2.6 or 1.0.11
For updates refer to http://www.wireshark.org/download.html
Insight
The flaws are caused by buffer overflow errors in the LWRES dissector when processing malformed data or packets.
Affected
Wireshark version 1.2.0 to 1.2.5 and 0.9.15 to 1.0.10
References
Severity
Classification
-
CVE CVE-2010-0304 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Shockwave Player ActiveX Control BOF Vulnerability
- ActiveFax RAW Server Multiple Buffer Overflow Vulnerabilities
- BreakPoint Software, Hex Workshop Buffer Overflow vulnerability
- Anzio Web Print Object ActiveX Control Remote BOF Vulnerability
- Adobe Shockwave Player 3D Model Buffer Overflow Vulnerabilities