Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArchLinuxASA-201609-27
HistorySep 26, 2016 - 12:00 a.m.

[ASA-201609-27] wireshark-cli: denial of service

2016-09-2600:00:00
security.archlinux.org
14

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.4%

JSON

Arch Linux Security Advisory ASA-201609-27

Severity: Medium
Date : 2016-09-26
CVE-ID : CVE-2016-7175 CVE-2016-7176 CVE-2016-7177 CVE-2016-7178
CVE-2016-7179 CVE-2016-7180
Package : wireshark-cli
Type : denial of service
Remote : Yes
Link : https://wiki.archlinux.org/index.php/CVE

Summary

The package wireshark-cli before version 2.2.0-2 is vulnerable to
denial of service.

Resolution

Upgrade to 2.2.0-2.

pacman -Syu “wireshark-cli>=2.2.0-2”

The problems have been fixed upstream in version 2.2.0.

Workaround

None.

Description

  • CVE-2016-7175 (denial of service)

It may be possible to make Wireshark crash via the QNX6 QNET dissector
by injecting a malformed packet onto the wire or by convincing someone
to read a malformed packet trace file.

  • CVE-2016-7176 (denial of service)

It may be possible to make Wireshark crash via the H.225 dissector by
injecting a malformed packet onto the wire or by convincing someone to
read a malformed packet trace file.

  • CVE-2016-7177 (denial of service)

It may be possible to make Wireshark crash via the Catapult DCT2000
dissector by injecting a malformed packet onto the wire or by
convincing someone to read a malformed packet trace file.

  • CVE-2016-7178 (denial of service)

It may be possible to make Wireshark crash via the UMTS FP dissector by
injecting a malformed packet onto the wire or by convincing someone to
read a malformed packet trace file.

  • CVE-2016-7179 (denial of service)

It may be possible to make Wireshark crash via the Catapult DCT2000
dissector by injecting a malformed packet onto the wire or by
convincing someone to read a malformed packet trace file.

  • CVE-2016-7180 (denial of service)

It may be possible to make Wireshark crash via the IPMI Trace dissector
by injecting a malformed packet onto the wire or by convincing someone
to read a malformed packet trace file.

Impact

A remote attacker is able use specially crafted packets to perform a
denial of service attack via various vectors.

References

https://www.wireshark.org/security/wnpa-sec-2016-50.html
https://www.wireshark.org/security/wnpa-sec-2016-51.html
https://www.wireshark.org/security/wnpa-sec-2016-52.html
https://www.wireshark.org/security/wnpa-sec-2016-53.html
https://www.wireshark.org/security/wnpa-sec-2016-54.html
https://www.wireshark.org/security/wnpa-sec-2016-55.html
https://access.redhat.com/security/cve/CVE-2016-7175
https://access.redhat.com/security/cve/CVE-2016-7176
https://access.redhat.com/security/cve/CVE-2016-7177
https://access.redhat.com/security/cve/CVE-2016-7178
https://access.redhat.com/security/cve/CVE-2016-7179
https://access.redhat.com/security/cve/CVE-2016-7180

OSVersionArchitecturePackageVersionFilename
ArchLinuxanyanywireshark-cli< 2.2.0-2UNKNOWN

Related

nessus 7
mageia 1
openvas 9
kaspersky 1
debian 2
osv 1
redhatcve 6
debiancve 6
cve 6
ubuntucve 6
prion 6
kitploit 1
nessus
nessus
Wireshark 2.0.x < 2.0.6 Multiple DoS (Mac OS X)
2016-09-15 00:00:00
Wireshark 2.0.x < 2.0.6 Multiple DoS
2016-09-15 00:00:00
Debian DSA-3671-1 : wireshark - security update
2016-09-21 00:00:00
mageia
mageia
Updated wireshark packages fix security vulnerabilities
2016-09-25 18:45:31
openvas
openvas
Wireshark Multiple Denial of Service Vulnerabilities (Sep 2016) - Mac OS X
2016-09-15 00:00:00
Mageia: Security Advisory (MGASA-2016-0321)
2022-01-28 00:00:00
Wireshark Multiple Denial of Service Vulnerabilities (Sep 2016) - Windows
2016-09-15 00:00:00
kaspersky
kaspersky
KLA10867 Denial of service vulnerabilities in Wireshark
2016-09-09 00:00:00
debian
debian
[SECURITY] [DSA 3671-1] mutt security update
2016-09-20 19:43:11
[SECURITY] [DLA 632-1] wireshark security update
2016-09-21 15:10:33
osv
osv
wireshark - security update
2016-09-21 00:00:00
redhatcve
redhatcve
CVE-2016-7179
2016-09-12 08:53:04
CVE-2016-7178
2016-09-12 08:53:17
CVE-2016-7180
2016-09-12 08:53:12
debiancve
debiancve
CVE-2016-7179
2016-09-09 10:59:00
CVE-2016-7178
2016-09-09 10:59:00
CVE-2016-7176
2016-09-09 10:59:00
cve
cve
CVE-2016-7179
2016-09-09 10:59:00
CVE-2016-7178
2016-09-09 10:59:00
CVE-2016-7180
2016-09-09 10:59:00
ubuntucve
ubuntucve
CVE-2016-7178
2016-09-09 00:00:00
CVE-2016-7179
2016-09-09 00:00:00
CVE-2016-7180
2016-09-09 00:00:00
prion
prion
Stack overflow
2016-09-09 10:59:00
Code injection
2016-09-09 10:59:00
Code injection
2016-09-09 10:59:00
kitploit
kitploit
arch-audit - An utility like pkg-audit for Arch Linux
2016-10-15 14:30:00

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.4%

JSON
Related for ASA-201609-27
nessus7mageia1openvas9kaspersky1debian2osv1redhatcve6debiancve6cve6ubuntucve6prion6kitploit1