Wireshark ANSI A MAP Files Denial Of Service Vulnerability (Mac OS X) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to denial of service vulnerability.

Impact

Successful exploitation allows attackers to crash an affected application, denying service to legitimate users. Impact Level: Application

Solution

Upgrade to Wireshark version 1.4.8 or 1.6.1 or later, For updates refer to http://www.wireshark.org/download.html

Insight

The flaw is caused to an infinite loop was found in the way ANSI A interface dissector of the Wireshark network traffic analyzer processed certain ANSI A MAP capture files. If Wireshark read a malformed packet off a network or opened a malicious packet capture file, it could lead to denial of service.

Affected

Wireshark version 1.6.0 Wireshark version 1.4.x to 1.4.7 on Mac OS X

References

http://anonsvn.wireshark.org/viewvc?view=revision&revision=37930
http://secunia.com/advisories/45086
http://www.openwall.com/lists/oss-security/2011/07/20/2

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-2698
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

at32 Reverse Proxy Multiple HTTP Header Fields Denial Of Service Vulnerability
Asterisk RTP Text Frames Denial Of Service Vulnerability
Eggdrop Server Module Message Handling Remote Buffer Overflow Vulnerability
BadBlue invalid GET DoS
Crash SMC AP

Wireshark ANSI A MAP Files Denial of Service Vulnerability (Mac OS X)

Take action and discover your vulnerabilities