Wireshark Code Execution And Denial Of Service Vulnerabilities (Mac OS X) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to code execution and denial of service vulnerabilities.

Impact

Successful exploitation will allow the attacker to execute arbitrary script in the context of the affected application and denial of service condition. Impact Level: System/Application

Solution

Upgrade to the Wireshark version 1.4.9, 1.6.2 or later, For updates refer to http://www.wireshark.org/download

Insight

The flaws are due to - An unspecified error related to Lua scripts, which allows local users to gain privileges via a Trojan horse Lua script in an unspecified directory. - An error in 'IKEv1' protocol dissector and 'proto_tree_add_item()', when add more than 1000000 items to a proto_tree, that will cause a denial of service.

Affected

Wireshark versions 1.4.x before 1.4.9 and 1.6.x before 1.6.2 on Mac OS X

References

http://osvdb.org/75347
http://www.wireshark.org/security/wnpa-sec-2011-13.html
http://www.wireshark.org/security/wnpa-sec-2011-15.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6136

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3266, CVE-2011-3360
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe AIR Multiple Vulnerabilities-01 Dec13 (Windows)
Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
Adobe Air Multiple Vulnerabilities -01 May 13 (Windows)
Adobe Flash Player Code Execution and DoS Vulnerabilities (Linux)
Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)

Wireshark Code Execution and Denial of Service Vulnerabilities (Mac OS X)

Take action and discover your vulnerabilities