Veracode Vulnerability DatabaseVERACODE:24237Arbitrary Code Execution
8.3 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:C/I:C/A:C
wireshark is vulnerable to arbitrary code execution. The vulnerability exists as multiple buffer overflow flaws were found in the Wireshark SigComp Universal Decompressor Virtual Machine (UDVM) dissector. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could crash or, possibly, execute arbitrary code as the user running Wireshark.
References
lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html
lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
secunia.com/advisories/40112
secunia.com/advisories/42877
secunia.com/advisories/43068
www.mandriva.com/security/advisories?name=MDVSA-2010:113
www.mandriva.com/security/advisories?name=MDVSA-2010:144
www.openwall.com/lists/oss-security/2010/06/11/1
www.redhat.com/security/updates/classification/#moderate
www.securityfocus.com/bid/40728
www.vupen.com/english/advisories/2010/1418
www.vupen.com/english/advisories/2011/0076
www.vupen.com/english/advisories/2011/0212
www.wireshark.org/security/wnpa-sec-2010-03.html
www.wireshark.org/security/wnpa-sec-2010-05.html
www.wireshark.org/security/wnpa-sec-2010-06.html
www.wireshark.org/security/wnpa-sec-2010-07.html
access.redhat.com/errata/RHSA-2010:0625
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11836
Related
8.3 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:C/I:C/A:C