Lucene search

Kaspersky LabKLA10637

HistoryJul 17, 2015 - 12:00 a.m.

KLA10637 Multiple vulnerabilities in Wireshark

2015-07-1700:00:00

Kaspersky Lab

threats.kaspersky.com

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

74.5%

JSON

Detect date:

07/17/2015

Severity:

Warning

Description:

Multiple vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities remotely to cause a denial of service via a specially crafted packet trace file.

Affected products:

Wireshark 1.12 versions earlier than 1.12.6

Solution:

Update to the latest version

Original advisories:

Wireshark security advisory
Wireshark security advisory

Impacts:

DoS

Related products:

Wireshark

CVE-IDS:

CVE-2015-46515.0Critical
CVE-2015-46524.3Warning

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4651

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4652

statistics.securelist.com/vulnerability-scan/month

threats.kaspersky.com/en/product/Wireshark/

www.wireshark.org/security/wnpa-sec-2015-19.html

www.wireshark.org/security/wnpa-sec-2015-20.html

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

74.5%

JSON

Related for KLA10637