Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2023 and is owned by Tenable, Inc. or an Affiliate thereof.WIRESHARK_1_6_14.NASL
HistoryMar 13, 2013 - 12:00 a.m.

Wireshark 1.6.x < 1.6.14 Multiple Vulnerabilities

2013-03-1300:00:00
This script is Copyright (C) 2013-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16

6.1 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

0.004 Low

EPSS

Percentile

74.1%

JSON

The installed version of Wireshark 1.6 is earlier than 1.6.14. It is, therefore, affected by the following vulnerabilities :

  • Errors exist in the FCSP, AMPQ, SCTP, and sFlow dissector that could lead to an infinite loop resulting in a denial of service. (Bugs 7789, 7802, 8337, 8359)

  • Errors exist in the CIMD, DTLS, Mount, MS-MMS, RTPS, and RTPS2 that could allow them to crash.
    (Bugs 8382, 8332, 8335, 8346, 8380)

  • The ACN dissector can attempt a divide by zero operation that could lead to an application crash.
    (Bug 8340)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(65253);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/03/09");

  script_cve_id(
    "CVE-2012-6054",
    "CVE-2012-6056",
    "CVE-2013-2478",
    "CVE-2013-2480",
    "CVE-2013-2481",
    "CVE-2013-2482",
    "CVE-2013-2483",
    "CVE-2013-2484",
    "CVE-2013-2485",
    "CVE-2013-2488"
  );
  script_bugtraq_id(
    56729,
    58340,
    58351,
    58353,
    58355,
    58356,
    58357,
    58362,
    58365
  );

  script_name(english:"Wireshark 1.6.x < 1.6.14 Multiple Vulnerabilities");
  script_summary(english:"Does a version check");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains an application that is affected by
multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The installed version of Wireshark 1.6 is earlier than 1.6.14.  It is,
therefore, affected by the following vulnerabilities :

  - Errors exist in the FCSP, AMPQ, SCTP, and sFlow
    dissector that could lead to an infinite loop resulting
    in a denial of service. (Bugs 7789, 7802, 8337, 8359)

  - Errors exist in the CIMD, DTLS, Mount, MS-MMS, RTPS,
    and RTPS2 that could allow them to crash.
    (Bugs 8382, 8332, 8335, 8346, 8380)

  - The ACN dissector can attempt a divide by zero
    operation that could lead to an application crash.
    (Bug 8340)");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2012-32.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2012-33.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-13.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-15.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-16.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-17.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-18.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-19.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-20.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-22.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/docs/relnotes/wireshark-1.6.14.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Wireshark version 1.6.14 or later.");
  script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-2485");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/01/29");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/01/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/03/13");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:wireshark:wireshark");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2013-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("wireshark_installed.nasl");
  script_require_keys("SMB/Wireshark/Installed");

  exit(0);
}

include('vcf.inc');
get_kb_item_or_exit('SMB/Registry/Enumerated');

var app_info = vcf::get_app_info(app:'Wireshark', win_local:TRUE);

var constraints = [
  { 'min_version' : '1.6.0', 'max_version' : '1.6.13', 'fixed_version' : '1.6.14' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
VendorProductVersionCPE
wiresharkwiresharkcpe:/a:wireshark:wireshark

References

Related

openvas 21
nessus 20
debian 2
securityvulns 2
cve 12
debiancve 10
nvd 12
ubuntucve 10
prion 10
cvelist 10
osv 1
centos 2
veracode 27
oraclelinux 2
redhat 2
amazon 1
openvas
openvas
Wireshark Multiple Dissector Multiple DoS Vulnerabilities - March 13 (Windows)
2013-03-11 00:00:00
Wireshark Multiple Dissector Multiple DoS Vulnerabilities - March 13 (Mac OS X)
2013-03-11 00:00:00
Wireshark Multiple Dissector Multiple DoS Vulnerabilities (Mar 2013) - Windows
2013-03-11 00:00:00
nessus
nessus
Debian DSA-2644-1 : wireshark - several vulnerabilities
2013-03-15 00:00:00
SuSE 10 Security Update : wireshark (ZYPP Patch Number 8500)
2013-04-29 00:00:00
Wireshark 1.8.x < 1.8.6 Multiple Vulnerabilities
2013-03-13 00:00:00
debian
debian
[SECURITY] [DSA 2644-1] wireshark security update
2013-03-14 17:57:12
[SECURITY] [DLA 497-1] wireshark security update
2016-05-31 10:22:31
securityvulns
securityvulns
[ MDVSA-2013:020 ] wireshark
2013-03-10 00:00:00
Wireshark multiple security vulnerabilities
2013-03-10 00:00:00
cve
cve
CVE-2013-2488
2013-03-07 15:55:02
CVE-2012-6056
2012-12-05 11:57:20
CVE-2012-6054
2012-12-05 11:57:19
debiancve
debiancve
CVE-2013-2488
2013-03-07 15:55:02
CVE-2012-6056
2012-12-05 11:57:20
CVE-2013-2480
2013-03-07 15:55:01
nvd
nvd
CVE-2013-2488
2013-03-07 15:55:02
CVE-2012-6056
2012-12-05 11:57:20
CVE-2012-6054
2012-12-05 11:57:19
ubuntucve
ubuntucve
CVE-2013-2485
2013-03-07 00:00:00
CVE-2013-2488
2013-03-07 00:00:00
CVE-2012-6054
2012-12-05 00:00:00
prion
prion
Memory corruption
2013-03-07 15:55:00
Integer overflow
2012-12-05 11:57:00
Design/Logic Flaw
2013-03-07 15:55:00
cvelist
cvelist
CVE-2013-2488
2013-03-07 15:00:00
CVE-2012-6056
2012-12-05 11:00:00
CVE-2012-6054
2012-12-05 11:00:00
osv
osv
wireshark - security update
2016-05-31 00:00:00
centos
centos
wireshark security update
2014-03-31 17:51:37
wireshark security update
2013-11-26 13:33:12
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:02:01
Denial Of Service (DoS)
2019-05-02 05:02:02
Denial Of Service (DoS)
2019-05-02 05:02:01
oraclelinux
oraclelinux
wireshark security update
2014-03-31 00:00:00
wireshark security, bug fix, and enhancement update
2013-11-25 00:00:00
redhat
redhat
(RHSA-2014:0341) Moderate: wireshark security update
2014-03-31 00:00:00
(RHSA-2013:1569) Moderate: wireshark security, bug fix, and enhancement update
2013-11-21 00:00:00
amazon
amazon
Medium: wireshark
2013-12-02 20:29:00

6.1 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

0.004 Low

EPSS

Percentile

74.1%

JSON
Related for WIRESHARK_1_6_14.NASL
openvas21nessus20debian2securityvulns2cve12debiancve10nvd12ubuntucve10prion10cvelist10osv1centos2veracode27oraclelinux2redhat2amazon1