Wireshark SMB Dissectors Denial Of Service Vulnerability (Linux) Network Vulnerability

Summary

This host is installed with Wireshark and is prone to Denial of Service vulnerability.

Impact

Successful exploitation will allow attackers to trick the user to render the crafted malicious capture packet thus causing Denial of Serivce attack. Impact Level: System/Application

Solution

Upgrade to Wireshark version 1.2.5, http://www.wireshark.org/download.html

Insight

Error occurs in the SMB and SMB2 dissectors while processing malformed packets.

Affected

Wireshark version 0.9.0 to 1.2.4 on Linux.

References

http://secunia.com/advisories/37842
http://www.vupen.com/english/advisories/2009/3596
http://www.wireshark.org/download/automated/captures/fuzz-2009-12-07-11141.pcap
http://www.wireshark.org/security/wnpa-sec-2009-09.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4301

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4377
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Apache APR-Utils Multiple Denial of Service Vulnerabilities
Comodo Internet Security Denial of Service Vulnerability-03
Cherokee POST request DoS
Freefloat FTP Server 'ALLO' Command Remote Buffer Overflow Vulnerability
eZ/eZphotoshare Denial of Service

Wireshark SMB Dissectors Denial of Service Vulnerability (Linux)

Take action and discover your vulnerabilities