Executive Summary
Summary | |
---|---|
Title | New wireshark packages fix denial of service |
Informations | |||
---|---|---|---|
Name | DSA-1322 | First vendor Publication | 2007-06-27 |
Vendor | Debian | Last vendor Modification | 2007-06-27 |
Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P) | |||
---|---|---|---|
Cvss Base Score | 5 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer, which may lead to denial of service. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-3390 Off-by-one overflows were discovered in the iSeries dissector. CVE-2007-3392 The MMS and SSL dissectors could be forced into an infinite loop. CVE-2007-3393 An off-by-one overflow was discovered in the DHCP/BOOTP dissector. The oldstable distribution (sarge) is not affected by these problems. (In Sarge Wireshark used to be called Ethereal). For the stable distribution (etch) these problems have been fixed in version 0.99.4-5.etch.0. Packages for the big endian MIPS architecture are not yet available. They will be provided later. For the unstable distribution (sid) these problems have been fixed in version 0.99.6pre1-1. We recommend that you upgrade your Wireshark packages. |
Original Source
Url : http://www.debian.org/security/2007/dsa-1322 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10663 | |||
Oval ID: | oval:org.mitre.oval:def:10663 | ||
Title: | Wireshark before 0.99.6 allows remote attackers to cause a denial of service via malformed (1) SSL or (2) MMS packets that trigger an infinite loop. | ||
Description: | Wireshark before 0.99.6 allows remote attackers to cause a denial of service via malformed (1) SSL or (2) MMS packets that trigger an infinite loop. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-3392 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:10865 | |||
Oval ID: | oval:org.mitre.oval:def:10865 | ||
Title: | Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, allows remote attackers to cause a denial of service (crash) via crafted iSeries capture files that trigger a SIGTRAP. | ||
Description: | Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, allows remote attackers to cause a denial of service (crash) via crafted iSeries capture files that trigger a SIGTRAP. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-3390 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11010 | |||
Oval ID: | oval:org.mitre.oval:def:11010 | ||
Title: | Off-by-one error in the DHCP/BOOTP dissector in Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via crafted DHCP-over-DOCSIS packets. | ||
Description: | Off-by-one error in the DHCP/BOOTP dissector in Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via crafted DHCP-over-DOCSIS packets. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-3393 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:18616 | |||
Oval ID: | oval:org.mitre.oval:def:18616 | ||
Title: | DSA-1322-1 wireshark | ||
Description: | Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer, which may lead to denial of service. | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-1322-1 CVE-2007-3390 CVE-2007-3392 CVE-2007-3393 | Version: | 7 |
Platform(s): | Debian GNU/Linux 4.0 | Product(s): | wireshark |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:21733 | |||
Oval ID: | oval:org.mitre.oval:def:21733 | ||
Title: | ELSA-2007:0710: wireshark security update (Low) | ||
Description: | Off-by-one error in the DHCP/BOOTP dissector in Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via crafted DHCP-over-DOCSIS packets. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2007:0710-04 CVE-2007-3389 CVE-2007-3390 CVE-2007-3391 CVE-2007-3392 CVE-2007-3393 | Version: | 25 |
Platform(s): | Oracle Linux 5 | Product(s): | wireshark |
Definition Synopsis: | |||
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-10-10 | Name : SLES9: Security update for ethereal File : nvt/sles9p5009131.nasl |
2009-04-09 | Name : Mandriva Update for wireshark MDKSA-2007:145 (wireshark) File : nvt/gb_mandriva_MDKSA_2007_145.nasl |
2009-03-06 | Name : RedHat Update for wireshark RHSA-2008:0059-01 File : nvt/gb_RHSA-2008_0059-01_wireshark.nasl |
2009-02-27 | Name : CentOS Update for libsmi CESA-2008:0059 centos3 i386 File : nvt/gb_CESA-2008_0059_libsmi_centos3_i386.nasl |
2009-02-27 | Name : CentOS Update for libsmi CESA-2008:0059 centos3 x86_64 File : nvt/gb_CESA-2008_0059_libsmi_centos3_x86_64.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200708-12 (wireshark) File : nvt/glsa_200708_12.nasl |
2008-09-04 | Name : wireshark -- Multiple problems File : nvt/freebsd_wireshark.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 1322-1 (wireshark) File : nvt/deb_1322_1.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
37642 | Wireshark Crafted iSeries Capture File Handling Remote DoS Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered by multiple specially crafted iSeries capture files, and will result in loss of availability for the application. |
37640 | Wireshark Malformed SSL / MMS Packet Handling DoS Wireshark contains a flaw in the way it handles SSL and MMS packets that may allow a remote denial of service. The issue is triggered by a specially crafted packet, and will result in loss of availability for the application. |
37639 | Wireshark DHCP/BOOTP Dissector Crafted DHCP-over-DOCSIS Packet Remote DoS The Wireshark DHCP/BOOTP dissector contains an off-by-one flaw that may allow a remote denial of service. The issue is triggered when multiple DHCP-over-DOCSIS packets are received, and will result in loss of availability for the application. |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2008-0059.nasl - Type : ACT_GATHER_INFO |
2013-06-29 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2007-0709.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20080121_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20071115_wireshark_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20071107_wireshark_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2009-09-24 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_11574.nasl - Type : ACT_GATHER_INFO |
2008-01-22 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2008-0059.nasl - Type : ACT_GATHER_INFO |
2008-01-21 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0059.nasl - Type : ACT_GATHER_INFO |
2007-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_ethereal-3888.nasl - Type : ACT_GATHER_INFO |
2007-11-16 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0709.nasl - Type : ACT_GATHER_INFO |
2007-11-08 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0710.nasl - Type : ACT_GATHER_INFO |
2007-10-17 | Name : The remote openSUSE host is missing a security update. File : suse_ethereal-3885.nasl - Type : ACT_GATHER_INFO |
2007-10-17 | Name : The remote openSUSE host is missing a security update. File : suse_wireshark-3886.nasl - Type : ACT_GATHER_INFO |
2007-08-21 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200708-12.nasl - Type : ACT_GATHER_INFO |
2007-07-11 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2007-145.nasl - Type : ACT_GATHER_INFO |
2007-07-10 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_7fadc0492ba011dc93770016179b2dd5.nasl - Type : ACT_GATHER_INFO |
2007-06-29 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1322.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:26:44 |
|