Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-632.NASL
HistorySep 22, 2016 - 12:00 a.m.

Debian DLA-632-1 : wireshark security update

2016-09-2200:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

Multiple vulnerabilities were discovered in the dissectors for H.225, Catapult DCT2000, UMTS FP and IPMI, which could result in denial of service or the execution of arbitrary code.

For Debian 7 ‘Wheezy’, these problems have been fixed in version 1.12.1+g01b65bf-4+deb8u6~deb7u4.

We recommend that you upgrade your wireshark packages.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-632-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(93620);
  script_version("2.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2016-7176", "CVE-2016-7177", "CVE-2016-7178", "CVE-2016-7179", "CVE-2016-7180");

  script_name(english:"Debian DLA-632-1 : wireshark security update");
  script_summary(english:"Checks dpkg output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Multiple vulnerabilities were discovered in the dissectors for H.225,
Catapult DCT2000, UMTS FP and IPMI, which could result in denial of
service or the execution of arbitrary code.

For Debian 7 'Wheezy', these problems have been fixed in version
1.12.1+g01b65bf-4+deb8u6~deb7u4.

We recommend that you upgrade your wireshark packages.

NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://lists.debian.org/debian-lts-announce/2016/09/msg00025.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/wheezy/wireshark"
  );
  script_set_attribute(attribute:"solution", value:"Upgrade the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libwireshark-data");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libwireshark-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libwireshark2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libwiretap-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libwiretap2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libwsutil-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libwsutil2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:tshark");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark-dbg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark-doc");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:7.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2016/09/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/09/22");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"7.0", prefix:"libwireshark-data", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"libwireshark-dev", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"libwireshark2", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"libwiretap-dev", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"libwiretap2", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"libwsutil-dev", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"libwsutil2", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"tshark", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark-common", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark-dbg", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark-dev", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark-doc", reference:"1.12.1+g01b65bf-4+deb8u6~deb7u4")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxwireshark-dbgp-cpe:/a:debian:debian_linux:wireshark-dbg
debiandebian_linuxwireshark-devp-cpe:/a:debian:debian_linux:wireshark-dev
debiandebian_linuxlibwireshark-datap-cpe:/a:debian:debian_linux:libwireshark-data
debiandebian_linuxlibwireshark-devp-cpe:/a:debian:debian_linux:libwireshark-dev
debiandebian_linuxlibwireshark2p-cpe:/a:debian:debian_linux:libwireshark2
debiandebian_linuxlibwiretap-devp-cpe:/a:debian:debian_linux:libwiretap-dev
debiandebian_linuxlibwiretap2p-cpe:/a:debian:debian_linux:libwiretap2
debiandebian_linuxlibwsutil-devp-cpe:/a:debian:debian_linux:libwsutil-dev
debiandebian_linuxlibwsutil2p-cpe:/a:debian:debian_linux:libwsutil2
debiandebian_linuxtsharkp-cpe:/a:debian:debian_linux:tshark
Rows per page:
1-10 of 141

Related

osv 1
openvas 9
debian 2
nessus 6
mageia 1
kaspersky 1
archlinux 1
redhatcve 5
debiancve 5
cve 5
ubuntucve 5
prion 5
kitploit 1
osv
osv
wireshark - security update
2016-09-21 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-632-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3671-1)
2016-09-19 00:00:00
Debian Security Advisory DSA 3671-1 (wireshark - security update)
2016-09-20 00:00:00
debian
debian
[SECURITY] [DSA 3671-1] mutt security update
2016-09-20 19:43:11
[SECURITY] [DLA 632-1] wireshark security update
2016-09-21 15:10:33
nessus
nessus
Debian DSA-3671-1 : wireshark - security update
2016-09-21 00:00:00
Wireshark 2.0.x < 2.0.6 Multiple DoS (Mac OS X)
2016-09-15 00:00:00
Wireshark 2.0.x < 2.0.6 Multiple DoS
2016-09-15 00:00:00
mageia
mageia
Updated wireshark packages fix security vulnerabilities
2016-09-25 18:45:31
kaspersky
kaspersky
KLA10867 Denial of service vulnerabilities in Wireshark
2016-09-09 00:00:00
archlinux
archlinux
[ASA-201609-27] wireshark-cli: denial of service
2016-09-26 00:00:00
redhatcve
redhatcve
CVE-2016-7179
2016-09-12 08:53:04
CVE-2016-7178
2016-09-12 08:53:17
CVE-2016-7180
2016-09-12 08:53:12
debiancve
debiancve
CVE-2016-7179
2016-09-09 10:59:00
CVE-2016-7178
2016-09-09 10:59:00
CVE-2016-7176
2016-09-09 10:59:00
cve
cve
CVE-2016-7179
2016-09-09 10:59:00
CVE-2016-7178
2016-09-09 10:59:00
CVE-2016-7180
2016-09-09 10:59:00
ubuntucve
ubuntucve
CVE-2016-7178
2016-09-09 00:00:00
CVE-2016-7179
2016-09-09 00:00:00
CVE-2016-7180
2016-09-09 00:00:00
prion
prion
Stack overflow
2016-09-09 10:59:00
Code injection
2016-09-09 10:59:00
Design/Logic Flaw
2016-09-09 10:59:00
kitploit
kitploit
arch-audit - An utility like pkg-audit for Arch Linux
2016-10-15 14:30:00
JSON
Related for DEBIAN_DLA-632.NASL
osv1openvas9debian2nessus6mageia1kaspersky1archlinux1redhatcve5debiancve5cve5ubuntucve5prion5kitploit1