Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (c) 2016 Greenbone Networks GmbH http://greenbone.netOPENVAS:703505
HistoryMar 04, 2016 - 12:00 a.m.

Debian Security Advisory DSA 3505-1 (wireshark - security update)

2016-03-0400:00:00
Copyright (c) 2016 Greenbone Networks GmbH http://greenbone.net
plugins.openvas.org
13

0.004 Low

EPSS

Percentile

71.7%

JSON

Multiple vulnerabilities were
discovered in the dissectors/parsers for Pcapng, NBAP, UMTS FP, DCOM, AllJoyn,
T.38, SDP, NLM, DNS, BED, SCTP, 802.11, DIAMETER, VeriWave, RVSP, ANSi A, GSM A,
Ascend, NBAP, ZigBee ZCL and Sniffer which could result in denial of service.

# OpenVAS Vulnerability Test
# $Id: deb_3505.nasl 6608 2017-07-07 12:05:05Z cfischer $
# Auto-generated from advisory DSA 3505-1 using nvtgen 1.0
# Script version: 1.0
#
# Author:
# Greenbone Networks
#
# Copyright:
# Copyright (c) 2016 Greenbone Networks GmbH http://greenbone.net
# Text descriptions are largely excerpted from the referenced
# advisory, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#


if(description)
{
    script_id(703505);
    script_version("$Revision: 6608 $");
    script_cve_id("CVE-2015-7830", "CVE-2015-8711", "CVE-2015-8712", "CVE-2015-8713",
                  "CVE-2015-8714", "CVE-2015-8715", "CVE-2015-8716", "CVE-2015-8717",
                  "CVE-2015-8718", "CVE-2015-8719", "CVE-2015-8720", "CVE-2015-8721",
                  "CVE-2015-8722", "CVE-2015-8723", "CVE-2015-8724", "CVE-2015-8725",
                  "CVE-2015-8726", "CVE-2015-8727", "CVE-2015-8728", "CVE-2015-8729",
                  "CVE-2015-8730", "CVE-2015-8732", "CVE-2015-8733");
    script_name("Debian Security Advisory DSA 3505-1 (wireshark - security update)");
    script_tag(name: "last_modification", value: "$Date: 2017-07-07 14:05:05 +0200 (Fri, 07 Jul 2017) $");
    script_tag(name: "creation_date", value: "2016-03-04 00:00:00 +0100 (Fri, 04 Mar 2016)");
    script_tag(name:"cvss_base", value:"4.3");
    script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:N/A:P");
    script_tag(name: "solution_type", value: "VendorFix");
    script_tag(name: "qod_type", value: "package");

    script_xref(name: "URL", value: "http://www.debian.org/security/2016/dsa-3505.html");


    script_category(ACT_GATHER_INFO);

    script_copyright("Copyright (c) 2016 Greenbone Networks GmbH http://greenbone.net");
    script_family("Debian Local Security Checks");
    script_dependencies("gather-package-list.nasl");
    script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages");
    script_tag(name: "affected",  value: "wireshark on Debian Linux");
    script_tag(name: "insight",   value: "Wireshark is a network 'sniffer' - a
tool that captures and analyzes packets off the wire. Wireshark can decode too
many protocols to list here.");
    script_tag(name: "solution",  value: "For the oldstable distribution (wheezy),
these problems have been fixed in version 1.8.2-5wheezy17.

For the stable distribution (jessie), these problems have been fixed in
version 1.12.1+g01b65bf-4+deb8u4.

For the testing distribution (stretch), these problems have been fixed
in version 2.0.2+ga16e22e-1.

For the unstable distribution (sid), these problems have been fixed in
version 2.0.2+ga16e22e-1.

We recommend that you upgrade your wireshark packages.");
    script_tag(name: "summary",   value: "Multiple vulnerabilities were
discovered in the dissectors/parsers for Pcapng, NBAP, UMTS FP, DCOM, AllJoyn,
T.38, SDP, NLM, DNS, BED, SCTP, 802.11, DIAMETER, VeriWave, RVSP, ANSi A, GSM A,
Ascend, NBAP, ZigBee ZCL and Sniffer which could result in denial of service.");
    script_tag(name: "vuldetect", value: "This check tests the installed
software version using the apt package manager.");
    exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-deb.inc");

res = "";
report = "";
if ((res = isdpkgvuln(pkg:"libwireshark-data", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark-dev", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark5:amd64", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark5:i386", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap-dev", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap4:amd64", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap4:i386", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil-dev", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil4:amd64", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil4:i386", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"tshark", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-common", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-dbg", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-dev", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-doc", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-qt", ver:"1.12.1+g01b65bf-4+deb8u4", rls_regex:"DEB8.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark-data", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark-dev", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark2:amd64", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark2:i386", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap-dev", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap2:amd64", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap2:i386", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil-dev", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil2:amd64", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil2:i386", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"tshark", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-common", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-dbg", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-dev", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-doc", ver:"1.8.2-5wheezy17", rls_regex:"DEB7.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark-data", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark-dev", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark6:amd64", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwireshark6:i386", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap-dev", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap5:amd64", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwiretap5:i386", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil-dev", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil6:amd64", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"libwsutil6:i386", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"tshark", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-common", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-dev", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-doc", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-gtk", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"wireshark-qt", ver:"2.0.2+ga16e22e-1", rls_regex:"DEB9.[0-9]+")) != NULL) {
    report += res;
}

if (report != "") {
    security_message(data:report);
} else if (__pkg_match) {
    exit(99); # Not vulnerable.
}

Related

osv 1
openvas 10
nessus 12
debian 1
kaspersky 2
archlinux 3
f5 4
gentoo 1
ubuntucve 23
prion 23
cve 23
debiancve 23
zdt 10
freebsd 1
zdi 1
mageia 1
avleonov 1
osv
osv
wireshark - security update
2016-03-04 00:00:00
openvas
openvas
Debian Security Advisory DSA 3505-1 (wireshark - security update)
2016-03-04 00:00:00
Wireshark Multiple Denial-of-Service Vulnerabilities-02 January16 (Windows)
2016-01-11 00:00:00
Wireshark Multiple Denial-of-Service Vulnerabilities-02 January16 (Mac OS X)
2016-01-11 00:00:00
nessus
nessus
Debian DSA-3505-1 : wireshark - security update
2016-03-07 00:00:00
SUSE SLED11 / SLES11 Security Update : wireshark (SUSE-SU-2016:0110-1)
2016-01-14 00:00:00
Wireshark 1.12.x < 1.12.9 Multiple DoS
2016-01-08 00:00:00
debian
debian
[SECURITY] [DSA 3505-1] wireshark security update
2016-03-04 19:04:01
kaspersky
kaspersky
KLA10730 Denial of service vulnerabilities in Wireshark
2016-01-04 00:00:00
KLA10701 Denial of service vulnerability in Wireshark
2015-10-14 00:00:00
archlinux
archlinux
wireshark-cli: denial of service
2016-01-09 00:00:00
wireshark-qt: denial of service
2016-01-09 00:00:00
wireshark-gtk: denial of service
2016-01-09 00:00:00
f5
f5
SOL01837042 - Multiple Wireshark (tshark) vulnerabilities
2016-06-24 00:00:00
K01837042 : Multiple Wireshark (tshark) vulnerabilities
2016-06-24 00:00:00
Multiple Wireshark (tshark) vulnerabilities
2016-06-25 00:41:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2016-04-26 00:00:00
ubuntucve
ubuntucve
CVE-2015-8721
2016-01-04 00:00:00
CVE-2015-8725
2016-01-04 00:00:00
CVE-2015-8723
2016-01-04 00:00:00
prion
prion
Code injection
2016-01-04 05:59:00
Buffer overflow
2016-01-04 05:59:00
Out-of-bounds
2016-01-04 05:59:00
cve
cve
CVE-2015-8721
2016-01-04 05:59:00
CVE-2015-8732
2016-01-04 05:59:00
CVE-2015-8725
2016-01-04 05:59:00
debiancve
debiancve
CVE-2015-8721
2016-01-04 05:59:00
CVE-2015-8732
2016-01-04 05:59:00
CVE-2015-8725
2016-01-04 05:59:00
zdt
zdt
Wireshark AirPDcapDecryptWPABroadcastKey - Heap Based Out-of-Bounds Read
2015-12-22 00:00:00
Wireshark - dissect_zcl_pwr_prof_pwrprofstatersp Static Out-of-Bounds Read
2015-12-16 00:00:00
Wireshark - AirPDcapPacketProcess Stack Based Buffer Overflow
2015-12-16 00:00:00
freebsd
freebsd
wireshark -- Pcapng file parser crash
2015-10-14 00:00:00
zdi
zdi
Wireshark PCAPNG if_filter Arbitrary Free Remote Code Execution Vulnerability
2015-12-08 00:00:00
mageia
mageia
Updated wireshark packages fix security vulnerabilities
2015-10-15 22:50:55
avleonov
avleonov
Parsing Nessus v2 XML reports with python
2020-03-09 01:12:00

0.004 Low

EPSS

Percentile

71.7%

JSON
Related for OPENVAS:703505
osv1openvas10nessus12debian1kaspersky2archlinux3f54gentoo1ubuntucve23prion23cve23debiancve23zdt10freebsd1zdi1mageia1avleonov1