Wireshark Multiple Vulnerabilities March-11 (Mac OS X) Network Vulnerability

Summary

The host is installed with Wireshark and is prone to multiple vulnerabilities.

Impact

Successful exploitation could allow attackers to overflow a buffer and execute arbitrary code on the system or cause the application to crash. Impact Level: System/Application

Solution

Upgrade to the Wireshark version 1.4.4 or 1.2.15 or later, For updates refer to http://www.wireshark.org/download.html

Insight

The flaws are due to - Improper bounds checking by the Visual C++ analyzer. - Error in 'wiretap/pcapng.c', which allows remote attackers to cause a denial of service via a pcap-ng file that contains a large packet-length field.

Affected

Wireshark version 1.2.0 through 1.2.14 Wireshark version 1.4.0 through 1.4.3 on Mac OS X

References

http://secunia.com/advisories/43554
http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html
http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html
http://www.wireshark.org/security/wnpa-sec-2011-04.html
http://xforce.iss.net/xforce/xfdb/65460

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0713, CVE-2011-1139

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache /server-status accessible
Apple Safari JavaScript Implementation Information Disclosure Vulnerability (Windows)
Adobe Flash Media Server Video Stream Capture Security Issue
Apple Mac OS X Multiple Vulnerabilities - 02 Jan14
Apache Tomcat XML External Entity Information Disclosure Vulnerability

Take action and discover your vulnerabilities