Wireshark Daintree SNA File Parser Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to Denial of Service vulnerability.

Impact

Successful exploitation will allow attackers to cause Denial of Serivce condition by tricking the user into opening a malformed packet trace file through Wireshark. Impact Level: System/Application.

Solution

Upgrade to Wireshark version 1.2.5, http://www.wireshark.org/download.html

Insight

A boundary error occurs in the 'daintree_sna_read()' function in the Daintree SNA file parser while processing malformed captured pcap files.

Affected

Wireshark version 1.2.0 to 1.2.4 on Linux.

References

http://secunia.com/advisories/37842
http://www.vupen.com/english/advisories/2009/3596
http://www.wireshark.org/security/wnpa-sec-2009-09.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4294

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4376
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

7-Zip Unspecified Archive Handling Vulnerability (Linux)
Apple QuickTime Malformed .mov File Buffer Overflow Vulnerability
ClamAV Denial of Service Vulnerability (Linux)
Apple Safari Multiple Vulnerabilities June-09 (Win) - I
Apache 'mod_proxy_http.c' Denial Of Service Vulnerability

Wireshark Daintree SNA File Parser Denial of Service Vulnerability (Linux)

Take action and discover your vulnerabilities