Summary
This host is installed with Wireshark and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow attackers to cause a Denial of Service.
Impact Level: Application
Solution
Upgrade to Wireshark version 1.10.6 or later,
For updates refer to http://www.wireshark.org/download
Insight
Flaw is due to improper memory allocation by 'dissect_protocol_data_parameter' function within the M3UA dissector (epan/dissectors/packet-m3ua.c).
Affected
Wireshark version 1.10.x before 1.10.6 on Mac OS X
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-2282 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Adobe Reader Information Disclosure & Code Execution Vulnerabilities (Linux)
- Apple Safari Multiple Memory Corruption Vulnerabilities-02 Aug14 (Mac OS X)
- Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities (Mac OS X)
- Asterisk Missing ACL Check Remote Security Bypass Vulnerability
- Adobe Reader 'file://' URL Information Disclosure Vulnerability Feb07 (Windows)