Summary
This host is installed with Wireshark and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow attackers to conduct a DoS (Denial of Service) attack.
Impact Level: Application
Solution
Upgrade to Wireshark version 1.10.8 or later,
For updates refer to http://www.wireshark.org/download
Insight
Flaw is due to an error in 'dissect_frame' function in epan/dissectors/packet-frame.c within the frame metadissector.
Affected
Wireshark version 1.10.0 through 1.10.7 on Mac OS X
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-4020 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Asterisk CIDR Notation in Access Rule Remote Security Bypass Vulnerability
- Asterisk Missing ACL Check Remote Security Bypass Vulnerability
- Adobe Reader Information Disclosure Vulnerability Jun05 (Mac OS X)
- Apache Tomcat XML External Entity Information Disclosure Vulnerability
- Apple Safari Multiple Memory Corruption Vulnerabilities-03 Aug14 (Mac OS X)