Lucene search

Wireshark Multiple Vulnerabilities(01) - August 2012 (Windows)

Wireshark Multiple Vulnerabilities(01) - August 2012 (Windows). Successful exploitation allows remote attackers to execute arbitrary code, crash the affected application, or consume excessive CPU resources due to errors within the pcap-ng file parser, Ixia IxVeriWave file parser, and ERF dissector, as well as the MongoDB dissector. Upgrade to version 1.8.2 or later

Reporter	Title	Published	Views	Family All 51
OpenVAS	Wireshark Multiple Vulnerabilities - 01 - (Aug 2012) - Windows	21 Aug 201200:00	–	openvas
OpenVAS	Wireshark Multiple Vulnerabilities-02 Dec 2012 (Mac OS X)	28 Dec 201200:00	–	openvas
OpenVAS	Wireshark Multiple Vulnerabilities-02 (Dec 2012) - Mac OS X	28 Dec 201200:00	–	openvas
OpenVAS	FreeBSD Ports: wireshark	30 Aug 201200:00	–	openvas
OpenVAS	FreeBSD Ports: wireshark	30 Aug 201200:00	–	openvas
OpenVAS	Gentoo Security Advisory GLSA 201308-05	29 Sep 201500:00	–	openvas
OpenVAS	Mandriva Update for wireshark MDVSA-2012:134 (wireshark)	17 Aug 201200:00	–	openvas
OpenVAS	Mandriva Update for wireshark MDVSA-2012:134 (wireshark)	17 Aug 201200:00	–	openvas
Fedora	[SECURITY] Fedora 18 Update: wireshark-1.8.2-1.fc18	17 Sep 201222:53	–	fedora
Tenable Nessus	Fedora 18 : wireshark-1.8.2-1.fc18 (2012-11981)	18 Sep 201200:00	–	nessus

Source	Link
wireshark	www.wireshark.org/security/wnpa-sec-2012-24.html
securitytracker	www.securitytracker.com/id/1027404
secunia	www.secunia.com/advisories/50276/
wireshark	www.wireshark.org/security/wnpa-sec-2012-14.html
wireshark	www.wireshark.org/security/wnpa-sec-2012-16.html
wireshark	www.wireshark.org/security/wnpa-sec-2012-25.html

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_wireshark_mult_vuln01_aug12_win.nasl 5912 2017-04-10 09:01:51Z teissa $
#
# Wireshark Multiple Vulnerabilities(01) - August 2012 (Windows)
#
# Authors:
# Madhuri D <[email protected]>
#
# Copyright:
# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

tag_impact = "Successful exploitation will allow remote attackers to execute arbitrary code
  in the context of the application, crash affected application or to consume
  excessive CPU resources.
  Impact Level: System/Application";
tag_affected = "Wireshark 1.8.x before 1.8.2 on Windows";
tag_insight = "The flaws are due to
  - An error within the pcap-ng file parser, Ixia IxVeriWave file parser and
    ERF dissector can be exploited to cause a buffer overflow.
  - An error within the MongoDB dissector can be exploited to trigger an
    infinite loop and consume excessive CPU resources.";
tag_solution = "Upgrade to the Wireshark version 1.8.2 or later,
  For updates refer to http://www.wireshark.org/download";
tag_summary = "This host is installed with Wireshark and is prone to multiple
  vulnerabilities.";

if(description)
{
  script_id(802945);
  script_version("$Revision: 5912 $");
  script_cve_id("CVE-2012-4298", "CVE-2012-4295", "CVE-2012-4294", "CVE-2012-4287",
                "CVE-2012-4286");
  script_bugtraq_id(55035);
  script_tag(name:"cvss_base", value:"5.8");
  script_tag(name:"cvss_base_vector", value:"AV:A/AC:L/Au:N/C:P/I:P/A:P");
  script_tag(name:"last_modification", value:"$Date: 2017-04-10 11:01:51 +0200 (Mon, 10 Apr 2017) $");
  script_tag(name:"creation_date", value:"2012-08-21 14:03:40 +0530 (Tue, 21 Aug 2012)");
  script_name("Wireshark Multiple Vulnerabilities(01) - August 2012 (Windows)");
  script_xref(name : "URL" , value : "http://secunia.com/advisories/50276/");
  script_xref(name : "URL" , value : "http://securitytracker.com/id/1027404");
  script_xref(name : "URL" , value : "http://www.wireshark.org/security/wnpa-sec-2012-25.html");
  script_xref(name : "URL" , value : "http://www.wireshark.org/security/wnpa-sec-2012-16.html");
  script_xref(name : "URL" , value : "http://www.wireshark.org/security/wnpa-sec-2012-14.html");
  script_xref(name : "URL" , value : "http://www.wireshark.org/security/wnpa-sec-2012-24.html");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2012 Greenbone Networks GmbH");
  script_family("General");
  script_dependencies("gb_wireshark_detect_win.nasl");
  script_require_keys("Wireshark/Win/Ver");
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("version_func.inc");

## Variable Initialization
sharkVer = "";

## Get version from KB
sharkVer = get_kb_item("Wireshark/Win/Ver");
if(!sharkVer){
  exit(0);
}

## Check for vulnerable Wireshark versions
if(version_in_range(version:sharkVer, test_version:"1.8.0", test_version2:"1.8.1")) {
  security_message(0);
}

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Aug 2012 00:00Current

0.1Low risk

Vulners AI Score0.1

EPSS0.11442