Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2012-526.NASL
HistoryJun 13, 2014 - 12:00 a.m.

openSUSE Security Update : wireshark (openSUSE-SU-2012:1035-1)

2014-06-1300:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

wireshark was updated to 1.4.15

  • The DCP ETSI dissector could trigger a zero division.
    (wnpa-sec-2012-13 CVE-2012-4285)

  • The XTP dissector could go into an infinite loop.
    (wnpa-sec-2012-15 CVE-2012-4288)

  • The AFP dissector could go into a large loop.
    (wnpa-sec-2012-17 CVE-2012-4289)

  • The RTPS2 dissector could overflow a buffer.
    (wnpa-sec-2012-18 CVE-2012-4296)

  • The CIP dissector could exhaust system memory.
    (wnpa-sec-2012-20 CVE-2012-4291)

  • The STUN dissector could crash. (wnpa-sec-2012-21 CVE-2012-4292)

  • The EtherCAT Mailbox dissector could abort.
    (wnpa-sec-2012-22 CVE-2012-4293)

  • The CTDB dissector could go into a large loop.
    (wnpa-sec-2012-23 CVE-2012-4290)

Further bug fixes and updated protocol support as listed in:
http://www.wireshark.org/docs/relnotes/wireshark-1.4.15.html

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2012-526.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(74720);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2012-4285", "CVE-2012-4288", "CVE-2012-4289", "CVE-2012-4290", "CVE-2012-4291", "CVE-2012-4292", "CVE-2012-4293", "CVE-2012-4296");

  script_name(english:"openSUSE Security Update : wireshark (openSUSE-SU-2012:1035-1)");
  script_summary(english:"Check for the openSUSE-2012-526 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"wireshark was updated to 1.4.15

  - The DCP ETSI dissector could trigger a zero division.
    (wnpa-sec-2012-13 CVE-2012-4285)

  - The XTP dissector could go into an infinite loop.
    (wnpa-sec-2012-15 CVE-2012-4288)

  - The AFP dissector could go into a large loop.
    (wnpa-sec-2012-17 CVE-2012-4289)

  - The RTPS2 dissector could overflow a buffer.
    (wnpa-sec-2012-18 CVE-2012-4296)

  - The CIP dissector could exhaust system memory.
    (wnpa-sec-2012-20 CVE-2012-4291)

  - The STUN dissector could crash. (wnpa-sec-2012-21
    CVE-2012-4292)

  - The EtherCAT Mailbox dissector could abort.
    (wnpa-sec-2012-22 CVE-2012-4293)

  - The CTDB dissector could go into a large loop.
    (wnpa-sec-2012-23 CVE-2012-4290)

Further bug fixes and updated protocol support as listed in:
http://www.wireshark.org/docs/relnotes/wireshark-1.4.15.html"
  );
  # http://www.wireshark.org/docs/relnotes/wireshark-1.4.15.html
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.wireshark.org/docs/relnotes/wireshark-1.4.15.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=776083"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://lists.opensuse.org/opensuse-updates/2012-08/msg00033.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected wireshark packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.1");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/08/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/08/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE12\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "12.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE12.1", reference:"wireshark-1.4.15-3.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"wireshark-debuginfo-1.4.15-3.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"wireshark-debugsource-1.4.15-3.20.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"wireshark-devel-1.4.15-3.20.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
  else security_note(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "wireshark");
}
VendorProductVersionCPE
novellopensusewiresharkp-cpe:/a:novell:opensuse:wireshark
novellopensusewireshark-debuginfop-cpe:/a:novell:opensuse:wireshark-debuginfo
novellopensusewireshark-debugsourcep-cpe:/a:novell:opensuse:wireshark-debugsource
novellopensusewireshark-develp-cpe:/a:novell:opensuse:wireshark-devel
novellopensuse12.1cpe:/o:novell:opensuse:12.1

Related

openvas 25
nessus 24
securityvulns 2
fedora 2
freebsd 1
redhat 2
centos 2
veracode 36
ubuntucve 8
cve 8
debiancve 8
oraclelinux 2
prion 8
debian 1
amazon 1
gentoo 1
openvas
openvas
Wireshark Multiple Vulnerabilities - August 2012 (Windows)
2012-08-21 00:00:00
Wireshark Multiple Vulnerabilities-01 (Dec 2012) - Mac OS X
2012-12-28 00:00:00
Wireshark Multiple Vulnerabilities (Aug 2012) - Windows
2012-08-21 00:00:00
nessus
nessus
Wireshark 1.4.x < 1.4.15 Multiple Vulnerabilities (macOS)
2023-05-25 00:00:00
Wireshark 1.4.x < 1.4.15 Multiple Vulnerabilities
2012-08-17 00:00:00
Fedora 16 : wireshark-1.6.10-1.fc16 (2012-12085)
2012-08-28 00:00:00
securityvulns
securityvulns
[ MDVSA-2012:135 ] wireshark
2012-08-20 00:00:00
Wireshark security vulnerabilities
2012-08-20 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: wireshark-1.6.10-1.fc16
2012-08-27 22:55:57
[SECURITY] Fedora 17 Update: wireshark-1.6.10-1.fc17
2012-08-27 23:05:49
freebsd
freebsd
Wireshark -- Multiple vulnerabilities
2012-07-22 00:00:00
redhat
redhat
(RHSA-2013:0125) Moderate: wireshark security, bug fix, and enhancement update
2013-01-08 00:00:00
(RHSA-2013:1569) Moderate: wireshark security, bug fix, and enhancement update
2013-11-21 00:00:00
centos
centos
wireshark security update
2013-01-09 19:42:29
wireshark security update
2013-11-26 13:33:12
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:45:33
Denial Of Service (DoS)
2019-05-02 04:45:33
Denial Of Service (DoS)
2019-05-02 04:45:33
ubuntucve
ubuntucve
CVE-2012-4296
2012-08-16 00:00:00
CVE-2012-4289
2012-08-16 00:00:00
CVE-2012-4290
2012-08-16 00:00:00
cve
cve
CVE-2012-4296
2012-08-16 10:38:00
CVE-2012-4290
2012-08-16 10:38:00
CVE-2012-4289
2012-08-16 10:38:00
debiancve
debiancve
CVE-2012-4291
2012-08-16 10:38:00
CVE-2012-4290
2012-08-16 10:38:00
CVE-2012-4289
2012-08-16 10:38:00
oraclelinux
oraclelinux
wireshark security, bug fix, and enhancement update
2013-01-11 00:00:00
wireshark security, bug fix, and enhancement update
2013-11-25 00:00:00
prion
prion
Code injection
2012-08-16 10:38:00
Design/Logic Flaw
2012-08-16 10:38:00
Integer overflow
2012-08-16 10:38:00
debian
debian
[SECURITY] [DSA 2590-1] wireshark security update
2012-12-26 15:20:33
amazon
amazon
Medium: wireshark
2013-12-02 20:29:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2013-08-28 00:00:00
JSON
Related for OPENSUSE-2012-526.NASL
openvas25nessus24securityvulns2fedora2freebsd1redhat2centos2veracode36ubuntucve8cve8debiancve8oraclelinux2prion8debian1amazon1gentoo1