Summary
This host is installed with Wireshark and is prone to denial of service vulnerability.
Impact
Successful exploitation could allow attackers to cause the application to enter into an infinite loop and crash it.
Impact Level: Application
Solution
Upgrade to Wireshark 1.2.18 or later,
For updates refer to http://www.wireshark.org/download.html
Insight
The flaw is due to an error in Lucent/Ascend file parser when processing malicious packets.
Affected
Wireshark version 1.2.0 to 1.2.17, 1.4.0 to 1.4.7 and 1.6.0
References
Severity
Classification
-
CVE CVE-2011-2597 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Dell OpenManage Web Server <= 3.7.1
- Beckhoff TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service Vulnerability
- Eggdrop Server Module Message Handling Remote Buffer Overflow Vulnerability
- FreeRADIUS Tunnel-Password Denial Of Service Vulnerability
- F-PROT AV 'ELF' Header Denial of Service Vulnerability