Lucene search
Copyright (C) 2008 SecPodOPENVAS:900212HistorySep 10, 2008 - 12:00 a.m.
Wireshark Multiple Vulnerabilities - Sept-08 (Windows)
2008-09-1000:00:00
Copyright (C) 2008 SecPod
plugins.openvas.org
8
0.01 Low
EPSS
Percentile
83.3%
Check for vulnerable version of Wireshark/Ethereal
##############################################################################
# OpenVAS Vulnerability Test
# $Id: secpod_wireshark_mult_vuln_sept08_win_900212.nasl 5370 2017-02-20 15:24:26Z cfi $
# Description: Wireshark Multiple Vulnerabilities - Sept-08 (Windows)
#
# Authors:
# Veerendra GG <[email protected]>
#
# Copyright:
# Copyright (C) 2008 SecPod, http://www.secpod.com
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
##############################################################################
if(description)
{
script_id(900212);
script_version("$Revision: 5370 $");
script_tag(name:"last_modification", value:"$Date: 2017-02-20 16:24:26 +0100 (Mon, 20 Feb 2017) $");
script_tag(name:"creation_date", value:"2008-09-10 17:51:23 +0200 (Wed, 10 Sep 2008)");
script_bugtraq_id(31009);
script_cve_id("CVE-2008-3146", "CVE-2008-3932", "CVE-2008-3933");
script_copyright("Copyright (C) 2008 SecPod");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_category(ACT_GATHER_INFO);
script_tag(name:"qod_type", value:"registry");
script_family("Denial of Service");
script_name("Wireshark Multiple Vulnerabilities - Sept-08 (Windows)");
script_summary("Check for vulnerable version of Wireshark/Ethereal");
script_dependencies("secpod_reg_enum.nasl");
script_mandatory_keys("SMB/WindowsVersion");
script_require_ports(139, 445);
script_xref(name : "URL" , value : "http://secunia.com/advisories/31674");
script_xref(name : "URL" , value : "http://www.frsirt.com/english/advisories/2008/2493");
script_xref(name : "URL" , value : "http://www.wireshark.org/security/wnpa-sec-2008-05.html");
script_tag(name : "affected" , value : "Wireshark versions 1.0.2 and prior on Windows (All).");
script_tag(name : "solution" , value : "Upgrade to wireshark 1.0.3 or later.
http://www.wireshark.org/download.html");
script_tag(name : "impact" , value : "Successful exploitation could result in denial of service
condition or application crash by injecting a series of malformed
packets or by convincing the victim to read a malformed packet.
Impact Level : Application");
exit(0);
}
include("smb_nt.inc");
if(!get_kb_item("SMB/WindowsVersion")){
exit(0);
}
report = string("\n Overview : The host is running Wireshark/Ethereal, which" +
"is prone to multiple\n vulnerabilities.\n" +
"\n Vulnerability Insight:\n" +
"\n Flaw(s) is/are due to,\n");
vuln1 = string(" - infinite loop errors in the NCP dissector.\n");
vuln2 = string(" - an error when uncompressing zlib-compressed packet data.\n");
vuln3 = string(" - an error when reading a Tektronix .rf5 file.\n");
etherealVer = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion"+
"\Uninstall\Ethereal", item:"DisplayVersion");
if(etherealVer)
{
etherealVer = ereg_replace(pattern:"Ethereal (.*)", replace:"\1",
string:etherealVer);
if(ereg(pattern:"^0\.(9\.[7-9]|10\.(0?[0-9]|1[0-3]))$",
string:etherealVer))
{
security_message(data:string(report, vuln1));
exit(0);
}
else if(ereg(pattern:"^0\.(10\.14|99\.0)$",
string:etherealVer))
{
security_message(data:string(report, vuln1, vuln2));
exit(0);
}
}
wiresharkVer = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion"+
"\Uninstall\Wireshark", item:"DisplayVersion");
if(!wiresharkVer){
exit(0);
}
if(ereg(pattern:"^0\.99\.[1-5]$", string:wiresharkVer))
{
security_message(data:string(report, vuln1, vuln2));
exit(0);
}
else if(ereg(pattern:"^(0\.99\.[6-9]|1\.0\.[0-2])$", string:wiresharkVer)){
security_message(data:string(report, vuln1, vuln2, vuln3));
}
Related
openvas
openvas
Wireshark Multiple Vulnerabilities (Sep 2008) - Linux
2008-09-10 00:00:00
Wireshark Multiple Vulnerabilities (Sep 2008) - Windows
2008-09-10 00:00:00
Fedora Update for wireshark FEDORA-2008-7936
2009-02-17 00:00:00
nessus
nessus
GLSA-200809-17 : Wireshark: Multiple Denials of Service
2008-09-26 00:00:00
Fedora 9 : wireshark-1.0.3-1.fc9 (2008-7936)
2008-09-12 00:00:00
Mandriva Linux Security Advisory : wireshark (MDVSA-2008:199)
2009-04-23 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: wireshark-1.0.3-1.fc9
2008-09-11 17:11:17
[SECURITY] Fedora 8 Update: wireshark-1.0.3-1.fc8
2008-09-11 17:05:28
gentoo
gentoo
Wireshark: Multiple Denials of Service
2008-09-25 00:00:00
securityvulns
securityvulns
Wireshark / TShark multiple security vulnerabilities
2008-09-20 00:00:00
[ MDVSA-2008:199 ] wireshark
2008-09-20 00:00:00
cve
cve
ubuntucve
ubuntucve
nvd
nvd
cvelist
cvelist
debiancve
debiancve
prion
prion
Design/Logic Flaw
2008-09-04 19:41:00
Code injection
2008-09-04 19:41:00
Buffer overflow
2008-09-02 14:24:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:32:22
Denial Of Service (DoS)
2020-04-10 00:32:22
Arbitrary Code Execution
2020-04-10 00:32:22
redhat
redhat
(RHSA-2008:0890) Moderate: wireshark security update
2008-10-01 00:00:00
centos
centos
wireshark security update
2008-10-01 18:17:23
oraclelinux
oraclelinux
wireshark security update
2008-10-01 00:00:00
osv
osv
wireshark - several vulnerabilities
2008-11-29 00:00:00
debian
debian
[SECURITY] [DSA 1673-1] New wireshark packages fix several vulnerabilities
2008-11-29 23:07:40