Wireshark DECT Buffer Overflow Vulnerability (Mac OS X) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to buffer overflow vulnerability.

Impact

Successful exploitation could allow attackers to cause buffer overflow and execute arbitrary code on the system. Impact Level: System/Application

Solution

Upgrade to the Wireshark version 1.4.5 or later, For updates refer to http://www.wireshark.org/download.html

Insight

The flaw is due to error in the 'DECT' dissector when processing malformed data, which could allow code execution via malformed packets or a malicious PCAP file.

Affected

Wireshark version 1.4.0 through 1.4.4

References

http://secunia.com/advisories/44172
http://www.vupen.com/english/advisories/2011/1022
http://www.wireshark.org/security/wnpa-sec-2011-06.html
http://xforce.iss.net/xforce/xfdb/66834

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-1591
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Bopup Communication Server Remote Buffer Overflow Vulnerability
Apache mod_proxy content-length buffer overflow
Adobe Reader Multiple BOF Vulnerabilities - Jun09 (Linux)
BS.Player '.bsl' File Buffer Overflow Vulnerabilities
BSPlayer Stack Overflow Vulnerability BLS

Take action and discover your vulnerabilities