Wireshark File Opening Insecure Library Loading Vulnerability (Windows) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to insecure library loading vulnerability.

Impact

Successful exploitation will allow the attackers to execute arbitrary code and conduct DLL hijacking attacks. Impact Level: Application

Solution

Upgrade to version 1.2.11 or higher, For updates refer to http://www.wireshark.org/download.html

Insight

The flaw is due to the application insecurely loading certain librairies from the current working directory, which could allow attackers to execute arbitrary code by tricking a user into opening a file from a network share.

Affected

Wireshark version 1.2.10 and prior on windows.

References

http://secunia.com/advisories/41064
http://www.exploit-db.com/exploits/14721/
http://www.vupen.com/english/advisories/2010/2165

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-3133
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Unspecified Vulnerabilities - Windows
Adobe AIR Multiple Vulnerabilities-01 Sep14 (Windows)
Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Mac OS X)
Adobe Acrobat Multiple Unspecified Vulnerabilities - Mac OS X
Adobe Air Multiple Vulnerabilities -01 August 12 (Mac OS X)

Take action and discover your vulnerabilities