Summary
This host is installed with Wireshark and is prone to Denial of Service vulnerability.
Impact
Successful exploitation will allow the attackers to crash an affected application.
Impact Level: Application
Solution
Upgrade to Wireshark version 1.0.14 or 1.2.9:
For updates refer to http://www.wireshark.org/download.html
Insight
The flaw is caused by a NULL pointer dereference error in the 'SMB PIPE' dissector, which could be exploited to crash an affected application via unknown vectors.
Affected
Wireshark version 0.8.20 to 1.0.13 and 1.2.0 to 1.2.8
References
Severity
Classification
-
CVE CVE-2010-2285 -
CVSS Base Score: 3.3
AV:A/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Firefox Browser designMode Null Pointer Dereference DoS Vulnerability - Win
- Hummingbird Connectivity FTP service XCWD Overflow
- Oracle VM VirtualBox Local Denial of Service Vulnerability-01 Oct2013 (Windows)
- Kingsoft Antivirus 'KisKrnl.sys' Driver Denial of Service Vulnerability
- Wireshark Multiple Denial of Service Vulnerabilities - July 12 (Mac OS X)