5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.022 Low
EPSS
Percentile
89.2%
CentOS Errata and Security Advisory CESA-2007:0066-01
Wireshark is a program for monitoring network traffic.
Several denial of service bugs were found in Wiresharkโs LLT, IEEE 802.11,
http, and tcp protocol dissectors. It was possible for Wireshark to crash
or stop responding if it read a malformed packet off the network.
(CVE-2007-0456, CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)
Users of Wireshark should upgrade to these updated packages containing
Wireshark version 0.99.5, which is not vulnerable to these issues.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-March/075786.html
Affected packages:
wireshark
wireshark-gnome
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 2 | i386 | wireshark | <ย 0.99.5-AS21.3 | wireshark-0.99.5-AS21.3.i386.rpm |
CentOS | 2 | i386 | wireshark-gnome | <ย 0.99.5-AS21.3 | wireshark-gnome-0.99.5-AS21.3.i386.rpm |