Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2023 and is owned by Tenable, Inc. or an Affiliate thereof.WIRESHARK_1_6_14.NASL
HistoryMar 13, 2013 - 12:00 a.m.

Wireshark 1.6.x < 1.6.14 Multiple Vulnerabilities

2013-03-1300:00:00
This script is Copyright (C) 2013-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15

6.1 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

0.004 Low

EPSS

Percentile

74.1%

JSON

The installed version of Wireshark 1.6 is earlier than 1.6.14. It is, therefore, affected by the following vulnerabilities :

  • Errors exist in the FCSP, AMPQ, SCTP, and sFlow dissector that could lead to an infinite loop resulting in a denial of service. (Bugs 7789, 7802, 8337, 8359)

  • Errors exist in the CIMD, DTLS, Mount, MS-MMS, RTPS, and RTPS2 that could allow them to crash.
    (Bugs 8382, 8332, 8335, 8346, 8380)

  • The ACN dissector can attempt a divide by zero operation that could lead to an application crash.
    (Bug 8340)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(65253);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/03/09");

  script_cve_id(
    "CVE-2012-6054",
    "CVE-2012-6056",
    "CVE-2013-2478",
    "CVE-2013-2480",
    "CVE-2013-2481",
    "CVE-2013-2482",
    "CVE-2013-2483",
    "CVE-2013-2484",
    "CVE-2013-2485",
    "CVE-2013-2488"
  );
  script_bugtraq_id(
    56729,
    58340,
    58351,
    58353,
    58355,
    58356,
    58357,
    58362,
    58365
  );

  script_name(english:"Wireshark 1.6.x < 1.6.14 Multiple Vulnerabilities");
  script_summary(english:"Does a version check");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains an application that is affected by
multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The installed version of Wireshark 1.6 is earlier than 1.6.14.  It is,
therefore, affected by the following vulnerabilities :

  - Errors exist in the FCSP, AMPQ, SCTP, and sFlow
    dissector that could lead to an infinite loop resulting
    in a denial of service. (Bugs 7789, 7802, 8337, 8359)

  - Errors exist in the CIMD, DTLS, Mount, MS-MMS, RTPS,
    and RTPS2 that could allow them to crash.
    (Bugs 8382, 8332, 8335, 8346, 8380)

  - The ACN dissector can attempt a divide by zero
    operation that could lead to an application crash.
    (Bug 8340)");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2012-32.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2012-33.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-13.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-15.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-16.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-17.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-18.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-19.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-20.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2013-22.html");
  script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/docs/relnotes/wireshark-1.6.14.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Wireshark version 1.6.14 or later.");
  script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-2485");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/01/29");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/01/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/03/13");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:wireshark:wireshark");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2013-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("wireshark_installed.nasl");
  script_require_keys("SMB/Wireshark/Installed");

  exit(0);
}

include('vcf.inc');
get_kb_item_or_exit('SMB/Registry/Enumerated');

var app_info = vcf::get_app_info(app:'Wireshark', win_local:TRUE);

var constraints = [
  { 'min_version' : '1.6.0', 'max_version' : '1.6.13', 'fixed_version' : '1.6.14' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
VendorProductVersionCPE
wiresharkwiresharkcpe:/a:wireshark:wireshark

References

Related

openvas 21
nessus 20
debian 2
prion 10
cvelist 10
ubuntucve 10
nvd 12
cve 12
securityvulns 2
debiancve 10
osv 1
oraclelinux 2
redhat 2
veracode 27
centos 2
amazon 1
openvas
openvas
Wireshark Multiple Dissector Multiple DoS Vulnerabilities - March 13 (Mac OS X)
2013-03-11 00:00:00
Wireshark Multiple Dissector Multiple DoS Vulnerabilities (Mar 2013) - Mac OS X
2013-03-11 00:00:00
Wireshark Multiple Dissector Multiple DoS Vulnerabilities (Mar 2013) - Windows
2013-03-11 00:00:00
nessus
nessus
Debian DSA-2644-1 : wireshark - several vulnerabilities
2013-03-15 00:00:00
SuSE 10 Security Update : wireshark (ZYPP Patch Number 8500)
2013-04-29 00:00:00
Wireshark 1.8.x < 1.8.6 Multiple Vulnerabilities
2013-03-13 00:00:00
debian
debian
[SECURITY] [DSA 2644-1] wireshark security update
2013-03-14 17:57:12
[SECURITY] [DLA 497-1] wireshark security update
2016-05-31 10:22:50
prion
prion
Memory corruption
2013-03-07 15:55:00
Design/Logic Flaw
2013-03-07 15:55:00
Integer overflow
2012-12-05 11:57:00
cvelist
cvelist
CVE-2013-2488
2013-03-07 15:00:00
CVE-2013-2482
2013-03-07 15:00:00
CVE-2012-6056
2012-12-05 11:00:00
ubuntucve
ubuntucve
CVE-2013-2488
2013-03-07 00:00:00
CVE-2012-6056
2012-12-05 00:00:00
CVE-2013-2485
2013-03-07 00:00:00
nvd
nvd
CVE-2012-6054
2012-12-05 11:57:19
CVE-2013-2488
2013-03-07 15:55:02
CVE-2013-2480
2013-03-07 15:55:01
cve
cve
CVE-2013-2488
2013-03-07 15:55:02
CVE-2012-6054
2012-12-05 11:57:19
CVE-2012-6056
2012-12-05 11:57:20
securityvulns
securityvulns
Wireshark multiple security vulnerabilities
2013-03-10 00:00:00
[ MDVSA-2013:020 ] wireshark
2013-03-10 00:00:00
debiancve
debiancve
CVE-2013-2488
2013-03-07 15:55:02
CVE-2013-2485
2013-03-07 15:55:01
CVE-2012-6056
2012-12-05 11:57:20
osv
osv
wireshark - security update
2016-05-31 00:00:00
oraclelinux
oraclelinux
wireshark security update
2014-03-31 00:00:00
wireshark security, bug fix, and enhancement update
2013-11-25 00:00:00
redhat
redhat
(RHSA-2014:0341) Moderate: wireshark security update
2014-03-31 00:00:00
(RHSA-2013:1569) Moderate: wireshark security, bug fix, and enhancement update
2013-11-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:02:01
Denial Of Service (DoS)
2019-05-02 05:02:02
Denial Of Service (DoS)
2019-05-02 05:02:01
centos
centos
wireshark security update
2014-03-31 17:51:37
wireshark security update
2013-11-26 13:33:12
amazon
amazon
Medium: wireshark
2013-12-02 20:29:00

6.1 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

0.004 Low

EPSS

Percentile

74.1%

JSON
Related for WIRESHARK_1_6_14.NASL
openvas21nessus20debian2prion10cvelist10ubuntucve10nvd12cve12securityvulns2debiancve10osv1oraclelinux2redhat2veracode27centos2amazon1