Executive Summary
Summary | |
---|---|
Title | New wireshark packages fix several vulnerabilities |
Informations | |||
---|---|---|---|
Name | DSA-2066 | First vendor Publication | 2010-07-01 |
Vendor | Debian | Last vendor Modification | 2010-07-01 |
Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:A/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 8.3 | Attack Range | Adjacent network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 6.5 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Several remote vulnerabilities have been discovered in the Wireshark network traffic analyzer. It was discovered that null pointer dereferences, buffer overflows and infinite loops in the SMB, SMB PIPE, ASN1.1 and SigComp dissectors could lead to denial of service or the execution of arbitrary code. For the stable distribution (lenny), these problems have been fixed in version 1.0.2-3+lenny9. For the upcoming stable distribution (squeeze) and the unstable distribution (sid), these problems have been fixed in version 1.2.9-1. We recommend that you upgrade your wireshark packages. |
Original Source
Url : http://www.debian.org/security/2010/dsa-2066 |
Alert History
Date | Informations |
---|---|
2016-04-26 21:44:03 |
|
2014-02-17 11:29:30 |
|
2013-05-11 00:43:48 |
|