Wireshark Multiple Vulnerabilities - Sept08 (Linux) Network Vulnerability

Impact

Successful exploitation could result in denial of service condition or application crash by injecting a series of malformed packets or by convincing the victim to read a malformed packet. Impact Level : Application

Solution

Upgrade to wireshark 1.0.3 or later. http://www.wireshark.org/download.html

Affected

Wireshark versions 1.0.2 and prior on Linux (All).

References

http://secunia.com/advisories/31674
http://www.frsirt.com/english/advisories/2008/2493
http://www.wireshark.org/security/wnpa-sec-2008-05.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-3146, CVE-2008-3932, CVE-2008-3933

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

BulletProof FTP Client '.bps' File Buffer Overflow Vulnerability
Adobe Flash Player/Air Multiple DoS Vulnerabilities - Aug09 (Win)
ClamAV get_unicode_name() Off-By-One Heap based BOF Vulnerability
Adobe Flash Player/Air Multiple DoS Vulnerabilities - Aug09 (Linux)
Apache 'mod_deflate' Denial Of Service Vulnerability - July09

Take action and discover your vulnerabilities