Wireshark Multiple Denial Of Service Vulnerabilities - Nov09 (Win) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to multiple Denial of Service vulnerabilities.

Impact

Successful exploitation could result in Denial of Serivce condition. Impact Level: Application.

Solution

Upgrade to Wireshark 1.2.3 http://www.wireshark.org/download.html Workaround: Disable the affected dissectors, http://www.wireshark.org/security/wnpa-sec-2009-07.html

Insight

- An alignment error within the 'dissect_paltalk()' function in epan/dissectors/packet-paltalk.c of the Paltalk dissector that can be exploited to cause a crash. - An off-by-one error within the 'dissect_negprot_response()' function in epan/dissectors/packet-smb.c of the SMB dissector that can be exploited to cause a crash.

Affected

Wireshark version 1.2.0 to 1.2.2 on Windows.

References

http://secunia.com/advisories/37175
http://www.vupen.com/english/advisories/2009/3061
http://www.wireshark.org/docs/relnotes/wireshark-1.2.3.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3689

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3549, CVE-2009-3551

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Cherokee POST request DoS
Denial Of Service Vulnerability in PHP April-09
AyeView GIF Image Handling Denial of Service Vulnerability
Firefox XUL Parsing Denial of Service Vulnerability (Linux)
freeFTPD PORT Command Denial of Service Vulnerability

Take action and discover your vulnerabilities