Wireshark Multiple Denial Of Service Vulnerability - Nov09 (Linux) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to multiple Denial of Service vulnerabilities.

Impact

Successful exploitation could result in Denial of Serivce condition. Impact Level: Application.

Solution

Upgrade to Wireshark 1.2.3 http://www.wireshark.org/download.html Workaround: Disable the affected dissectors, http://www.wireshark.org/security/wnpa-sec-2009-07.html

Insight

- An alignment error within the 'dissect_paltalk()' function in epan/dissectors/packet-paltalk.c of the Paltalk dissector can be exploited to cause a crash. - An off-by-one error within the 'dissect_negprot_response()' function in epan/dissectors/packet-smb.c of the SMB dissector can be exploited to cause a crash.

Affected

Wireshark version 1.2.0 to 1.2.2 on Linux.

References

http://secunia.com/advisories/37175
http://www.vupen.com/english/advisories/2009/3061
http://www.wireshark.org/docs/relnotes/wireshark-1.2.3.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3689

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3549, CVE-2009-3551
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

CUPS Denial of Service Vulnerability - Jun09
Active Perl Denial of Service Vulnerability Feb 2014 (Windows)
Apache Subversion 'mod_dav_svn' log REPORT Request DoS Vulnerability
Beckhoff TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service Vulnerability
Apple Safari 'WebKit.dll' Stack Consumption Vulnerability

Take action and discover your vulnerabilities