Wireshark Denial Of Service Vulnerability-03 Sep14 (Windows) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow attacker to cause denial of service attack - via a crafted packet to the RTP dissector. - via a crafted packet that leverages split memory ownership between the SDP and RTP dissectors. Impact Level: Application

Solution

Upgrade to Wireshark 1.10.10 or later, For updates refer to https://www.wireshark.org

Insight

Flaws exists due to, - the SDP dissector creates duplicate hashtables for a media channel. - the Use-after-free vulnerability in the SDP dissector.

Affected

Wireshark version 1.10.x before 1.10.10 on Windows

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://www.osvdb.com/111597
http://www.osvdb.com/111598
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9920
https://www.wireshark.org/security/wnpa-sec-2014-12.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-6421, CVE-2014-6422
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

ClamAV LZH File Unpacking Denial of Service Vulnerability (Linux)
ClamAV LZH File Unpacking Denial of Service Vulnerability (Win)
Apache Subversion 'mod_dav_svn' Module Multiple DoS Vulnerabilities
CUPS '_cupsImageReadTIFF()' Integer Overflow Vulnerability
Asterisk RTP Text Frames Denial Of Service Vulnerability

Wireshark Denial of Service Vulnerability-03 Sep14 (Windows)

Take action and discover your vulnerabilities