Lucene search
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-2792.NASLHistoryNov 05, 2013 - 12:00 a.m.
Debian DSA-2792-1 : wireshark - several vulnerabilities
2013-11-0500:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.01 Low
EPSS
Percentile
83.6%
Multiple vulnerabilities were discovered in the dissectors for IEEE 802.15.4, NBAP, SIP and TCP, which could result in denial of service.
The oldstable distribution (squeeze) is only affected by CVE-2013-6340. This problem has been fixed in version 1.2.11-6+squeeze13.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DSA-2792. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(70749);
script_version("1.12");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2013-6336", "CVE-2013-6337", "CVE-2013-6338", "CVE-2013-6340");
script_bugtraq_id(63500, 63502, 63503, 63504);
script_xref(name:"DSA", value:"2792");
script_name(english:"Debian DSA-2792-1 : wireshark - several vulnerabilities");
script_summary(english:"Checks dpkg output for the updated package");
script_set_attribute(
attribute:"synopsis",
value:"The remote Debian host is missing a security-related update."
);
script_set_attribute(
attribute:"description",
value:
"Multiple vulnerabilities were discovered in the dissectors for IEEE
802.15.4, NBAP, SIP and TCP, which could result in denial of service.
The oldstable distribution (squeeze) is only affected by
CVE-2013-6340. This problem has been fixed in version
1.2.11-6+squeeze13."
);
script_set_attribute(
attribute:"see_also",
value:"https://security-tracker.debian.org/tracker/CVE-2013-6340"
);
script_set_attribute(
attribute:"see_also",
value:"https://packages.debian.org/source/wheezy/wireshark"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.debian.org/security/2013/dsa-2792"
);
script_set_attribute(
attribute:"solution",
value:
"Upgrade the wireshark packages.
For the stable distribution (wheezy), these problems have been fixed
in version 1.8.2-5wheezy7."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:7.0");
script_set_attribute(attribute:"patch_publication_date", value:"2013/11/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/11/05");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Debian Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"7.0", prefix:"libwireshark-data", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"libwireshark-dev", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"libwireshark2", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"libwiretap-dev", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"libwiretap2", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"libwsutil-dev", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"libwsutil2", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"tshark", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark-common", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark-dbg", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark-dev", reference:"1.8.2-5wheezy7")) flag++;
if (deb_check(release:"7.0", prefix:"wireshark-doc", reference:"1.8.2-5wheezy7")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | wireshark | p-cpe:/a:debian:debian_linux:wireshark |
| debian | debian_linux | 7.0 | cpe:/o:debian:debian_linux:7.0 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6336
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6337
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6338
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6340
packages.debian.org/source/wheezy/wireshark
security-tracker.debian.org/tracker/CVE-2013-6340
www.debian.org/security/2013/dsa-2792
Related
openvas
openvas
Debian Security Advisory DSA 2792-1 (wireshark - several vulnerabilities)
2013-11-04 00:00:00
Debian: Security Advisory (DSA-2792-1)
2013-11-03 00:00:00
Fedora Update for wireshark FEDORA-2013-20829
2013-11-08 00:00:00
debian
debian
[SECURITY] [DSA 2792-1] wireshark security update
2013-11-04 17:50:36
[SECURITY] [DSA 2792-1] wireshark security update
2013-11-04 17:50:36
securityvulns
securityvulns
[SECURITY] [DSA 2792-1] wireshark security update
2013-11-18 00:00:00
wireshark multiple security vulnerabilities
2013-11-18 00:00:00
nessus
nessus
Wireshark 1.10.x < 1.10.3 Multiple DoS Vulnerabilities
2013-11-05 00:00:00
Fedora 20 : wireshark-1.10.3-3.fc20 (2013-20937)
2013-11-13 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: wireshark-1.10.3-2.fc19
2013-11-08 04:35:34
[SECURITY] Fedora 19 Update: wireshark-1.10.3-3.fc19
2013-11-11 02:28:41
[SECURITY] Fedora 20 Update: wireshark-1.10.3-3.fc20
2013-11-13 02:12:46
mageia
mageia
Updated wireshark packages fix multiple vulnerabilities
2013-11-22 23:09:07
veracode
veracode
Denial Of Service (DoS)
2019-05-16 01:23:07
Denial Of Service (DoS)
2019-05-02 05:02:03
Denial Of Service (DoS)
2019-05-02 05:02:02
redhat
redhat
(RHSA-2014:0342) Moderate: wireshark security update
2014-03-31 00:00:00
centos
centos
wireshark security update
2014-03-31 18:13:23
oraclelinux
oraclelinux
wireshark security update
2014-03-31 00:00:00
amazon
amazon
Medium: wireshark
2014-04-25 15:57:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2013-12-16 00:00:00
cve
cve
nvd
nvd
debiancve
debiancve
ubuntucve
ubuntucve
cvelist
cvelist
prion
prion
Null pointer dereference
2013-11-04 16:55:00
Design/Logic Flaw
2013-11-04 16:55:00
Design/Logic Flaw
2013-11-04 16:55:00
osv
osv
wireshark - several
2013-11-04 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.01 Low
EPSS
Percentile
83.6%
Related for DEBIAN_DSA-2792.NASL