Kaspersky LabKLA10796KLA10796 Multiple vulnerabilities in Wireshark
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
81.6%
Detect date:
04/25/2016
Severity:
Warning
Description:
Multiple vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely by injecting malformed packet.
Affected products:
Wireshark 1.12 versions earlier than 1.12.11.
Wireshark 2.0 versions earlier than 2.0.3
Wireshark 1.12 versions earlier than 1.12.11.
Wireshark 2.0 versions earlier than 2.0.3
Solution:
Update to the latest version
Download Wireshark
Original advisories:
Impacts:
DoS
Related products:
CVE-IDS:
CVE-2016-40854.3Warning
CVE-2016-40844.3Warning
CVE-2016-40834.3Warning
CVE-2016-40824.3Warning
CVE-2016-40814.3Warning
CVE-2016-40804.3Warning
CVE-2016-40794.3Warning
CVE-2016-40784.3Warning
CVE-2016-40774.3Warning
CVE-2016-40764.3Warning
CVE-2016-40064.3Warning
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4006
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4076
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4077
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4078
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4079
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4080
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4081
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4082
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4083
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4084
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4085
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Wireshark/
www.wireshark.org/#download
www.wireshark.org/security/
Related
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
81.6%