6.1 - MDVSA-2013:020

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	MDVSA-2013:020	First vendor Publication	2013-03-08
Vendor	Mandriva	Last vendor Modification	2013-03-08
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:A/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score	6.1	Attack Range	Adjacent network
Cvss Impact Score	6.9	Attack Complexity	Low
Cvss Expoit Score	6.5	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Multiple vulnerabilities was found and corrected in Wireshark:

* DRDA dissector infinite loop (CVE-2012-5239). * USB dissector infinite loop * ISAKMP dissector crash * iSCSI dissector infinite loop * WTP dissector infinite loop * RTCP dissector inifinte loop * ICMPv6 dissector infinite loop * Infinite and large loops in several dissectors (CVE-2013-1572, CVE-2013-1573, CVE-2013-1574, CVE-2013-1575, CVE-2013-1576, CVE-2013-1577, CVE-2013-1578, CVE-2013-1579, CVE-2013-1580, CVE-2013-1581). * CLNP dissector crash (CVE-2013-1582). * DTN dissector crash (CVE-2013-1583, CVE-2013-1584). * MS-MMC dissector crash (CVE-2013-1585). * DTLS dissector crash (CVE-2013-1586). * DCP-ETSI dissector crash (CVE-2013-1588). * Wireshark dissection engine crash (CVE-2013-1589). * NTLMSSP dissector overflow (CVE-2013-1590). * MS-MMS dissector crash (CVE-2013-2478). * RTPS and RTPS2 dissector crash (CVE-2013-2480). * Mount dissector crash (CVE-2013-2481). * AMPQ dissector infinite loop (CVE-2013-2482). * ACN dissector divide by zero (CVE-2013-2483). * CIMD dissector crash (CVE-2013-2484). * FCSP dissector infinite loop (CVE-2013-2485). * DTLS dissector crash (CVE-2013-2488).

This advisory provides the latest version of Wireshark (1.6.14) which is not vulnerable to these issues.

Original Source

Url : http://www.mandriva.com/security/advisories?name=MDVSA-2013:020

CWE : Common Weakness Enumeration

%	Id	Name
57 %	CWE-20	Improper Input Validation
19 %	CWE-189	Numeric Errors (CWE/SANS Top 25)
10 %	CWE-399	Resource Management Errors
10 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
5 %	CWE-310	Cryptographic Issues

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:15509

Oval ID:	oval:org.mitre.oval:def:15509
Title:	The dissect_cmstatus_tlv function in plugins/docsis/packet-cmstatus.c in the DOCSIS CM-STATUS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a position variable, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The dissect_cmstatus_tlv function in plugins/docsis/packet-cmstatus.c in the DOCSIS CM-STATUS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a position variable, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1580	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:15801

Oval ID:	oval:org.mitre.oval:def:15801
Title:	epan/tvbuff.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly validate certain length values for the MS-MMC dissector, which allows remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	epan/tvbuff.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly validate certain length values for the MS-MMC dissector, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1585	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16004

Oval ID:	oval:org.mitre.oval:def:16004
Title:	Buffer overflow in the NTLMSSP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	Buffer overflow in the NTLMSSP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1590	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16016

Oval ID:	oval:org.mitre.oval:def:16016
Title:	The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a large number of padding bits, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a large number of padding bits, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1573	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16048

Oval ID:	oval:org.mitre.oval:def:16048
Title:	The fragment_set_tot_len function in epan/reassemble.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly determine the length of a reassembled packet for the DTLS dissector, which allows remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	The fragment_set_tot_len function in epan/reassemble.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly determine the length of a reassembled packet for the DTLS dissector, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1586	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16092

Oval ID:	oval:org.mitre.oval:def:16092
Title:	The dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	The dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1584	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16205

Oval ID:	oval:org.mitre.oval:def:16205
Title:	The dissect_pw_eth_heuristic function in epan/dissectors/packet-pw-eth.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle apparent Ethernet address values at the beginning of MPLS data, which allows remote attackers to cause a denial of service (loop) via a malformed packet
Description:	The dissect_pw_eth_heuristic function in epan/dissectors/packet-pw-eth.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle apparent Ethernet address values at the beginning of MPLS data, which allows remote attackers to cause a denial of service (loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1578	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16230

Oval ID:	oval:org.mitre.oval:def:16230
Title:	The rtps_util_add_bitmap function in epan/dissectors/packet-rtps.c in the RTPS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly implement certain nested loops for processing bitmap data, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The rtps_util_add_bitmap function in epan/dissectors/packet-rtps.c in the RTPS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly implement certain nested loops for processing bitmap data, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1579	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16253

Oval ID:	oval:org.mitre.oval:def:16253
Title:	The dissect_sip_p_charging_func_addresses function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle offset data associated with a quoted string, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The dissect_sip_p_charging_func_addresses function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle offset data associated with a quoted string, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1577	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16291

Oval ID:	oval:org.mitre.oval:def:16291
Title:	The dissect_r3_cmd_alarmconfigure function in epan/dissectors/packet-assa_r3.c in the R3 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a certain alarm length, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The dissect_r3_cmd_alarmconfigure function in epan/dissectors/packet-assa_r3.c in the R3 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a certain alarm length, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1575	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16304

Oval ID:	oval:org.mitre.oval:def:16304
Title:	The dissect_version_4_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	The dissect_version_4_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1583	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16319

Oval ID:	oval:org.mitre.oval:def:16319
Title:	Double free vulnerability in epan/proto.c in the dissection engine in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	Double free vulnerability in epan/proto.c in the dissection engine in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1589	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16323

Oval ID:	oval:org.mitre.oval:def:16323
Title:	The dissect_bthci_eir_ad_data function in epan/dissectors/packet-bthci_cmd.c in the Bluetooth HCI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a counter variable, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The dissect_bthci_eir_ad_data function in epan/dissectors/packet-bthci_cmd.c in the Bluetooth HCI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a counter variable, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1574	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16370

Oval ID:	oval:org.mitre.oval:def:16370
Title:	The dissect_pft_fec_detailed function in epan/dissectors/packet-dcp-etsi.c in the DCP-ETSI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle fragment gaps, which allows remote attackers to cause a denial of service (loop) via a malformed packet
Description:	The dissect_pft_fec_detailed function in epan/dissectors/packet-dcp-etsi.c in the DCP-ETSI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle fragment gaps, which allows remote attackers to cause a denial of service (loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1581	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16402

Oval ID:	oval:org.mitre.oval:def:16402
Title:	Multiple buffer overflows in the dissect_pft_fec_detailed function in the DCP-ETSI dissector in epan/dissectors/packet-dcp-etsi.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allow remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	Multiple buffer overflows in the dissect_pft_fec_detailed function in the DCP-ETSI dissector in epan/dissectors/packet-dcp-etsi.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allow remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1588	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16411

Oval ID:	oval:org.mitre.oval:def:16411
Title:	The acn_add_dmp_data function in epan/dissectors/packet-acn.c in the ACN dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via an invalid count value in ACN_DMP_ADT_D_RE DMP data
Description:	The acn_add_dmp_data function in epan/dissectors/packet-acn.c in the ACN dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via an invalid count value in ACN_DMP_ADT_D_RE DMP data.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-2483	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.14, or 1.8.x before 1.8.6

Definition Id: oval:org.mitre.oval:def:16420

Oval ID:	oval:org.mitre.oval:def:16420
Title:	Integer signedness error in the dissect_mount_dirpath_call function in epan/dissectors/packet-mount.c in the Mount dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6, when nfs_file_name_snooping is enabled, allows remote attackers to cause a denial of service (application crash) via a negative length value
Description:	Integer signedness error in the dissect_mount_dirpath_call function in epan/dissectors/packet-mount.c in the Mount dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6, when nfs_file_name_snooping is enabled, allows remote attackers to cause a denial of service (application crash) via a negative length value.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-2481	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.14, or 1.8.x before 1.8.6

Definition Id: oval:org.mitre.oval:def:16423

Oval ID:	oval:org.mitre.oval:def:16423
Title:	The dissect_oampdu_event_notification function in epan/dissectors/packet-slowprotocols.c in the IEEE 802.3 Slow Protocols dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle certain short lengths, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The dissect_oampdu_event_notification function in epan/dissectors/packet-slowprotocols.c in the IEEE 802.3 Slow Protocols dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle certain short lengths, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1572	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16426

Oval ID:	oval:org.mitre.oval:def:16426
Title:	The dissect_clnp function in epan/dissectors/packet-clnp.c in the CLNP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly manage an offset variable, which allows remote attackers to cause a denial of service (infinite loop or application crash) via a malformed packet
Description:	The dissect_clnp function in epan/dissectors/packet-clnp.c in the CLNP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly manage an offset variable, which allows remote attackers to cause a denial of service (infinite loop or application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1582	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16447

Oval ID:	oval:org.mitre.oval:def:16447
Title:	The dissect_server_info function in epan/dissectors/packet-ms-mms.c in the MS-MMS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not properly manage string lengths, which allows remote attackers to cause a denial of service (application crash) via a malformed packet that (1) triggers an integer overflow or (2) has embedded '\0' characters in a string
Description:	The dissect_server_info function in epan/dissectors/packet-ms-mms.c in the MS-MMS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not properly manage string lengths, which allows remote attackers to cause a denial of service (application crash) via a malformed packet that (1) triggers an integer overflow or (2) has embedded '\0' characters in a string.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-2478	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.14, or 1.8.x before 1.8.6

Definition Id: oval:org.mitre.oval:def:16450

Oval ID:	oval:org.mitre.oval:def:16450
Title:	The dissect_sdp_media_attribute function in epan/dissectors/packet-sdp.c in the SDP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly process crypto-suite parameters, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The dissect_sdp_media_attribute function in epan/dissectors/packet-sdp.c in the SDP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly process crypto-suite parameters, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-1576	Version:	5
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.13, or 1.8.x before 1.8.5

Definition Id: oval:org.mitre.oval:def:16469

Oval ID:	oval:org.mitre.oval:def:16469
Title:	The CIMD dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	The CIMD dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-2484	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.14, or 1.8.x before 1.8.6

Definition Id: oval:org.mitre.oval:def:16529

Oval ID:	oval:org.mitre.oval:def:16529
Title:	The FCSP dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The FCSP dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-2485	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.14, or 1.8.x before 1.8.6

Definition Id: oval:org.mitre.oval:def:16630

Oval ID:	oval:org.mitre.oval:def:16630
Title:	The RTPS and RTPS2 dissectors in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allow remote attackers to cause a denial of service (application crash) via a malformed packet
Description:	The RTPS and RTPS2 dissectors in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allow remote attackers to cause a denial of service (application crash) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-2480	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.14, or 1.8.x before 1.8.6

Definition Id: oval:org.mitre.oval:def:16672

Oval ID:	oval:org.mitre.oval:def:16672
Title:	The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service (application crash) via a large offset value that triggers write access to an invalid memory location
Description:	The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service (application crash) via a large offset value that triggers write access to an invalid memory location.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-2488	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.14, or 1.8.x before 1.8.6

Definition Id: oval:org.mitre.oval:def:16677

Oval ID:	oval:org.mitre.oval:def:16677
Title:	The AMPQ dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet
Description:	The AMPQ dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-2482	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows 8 Microsoft Windows Server 2012	Product(s):	Wireshark
Definition Synopsis:
Wireshark is installed on the system. AND Version of Wireshark is 1.6.x before 1.6.14, or 1.8.x before 1.8.6

Definition Id: oval:org.mitre.oval:def:18525

Oval ID:	oval:org.mitre.oval:def:18525
Title:	DSA-2625-1 wireshark - several
Description:	Multiple vulnerabilities were discovered in the dissectors for the CLNP, DTLS, DCP-ETSI and NTLMSSP protocols, which could result in denial of service or the execution of arbitrary code.
Family:	unix	Class:	patch
Reference(s):	DSA-2625-1 CVE-2013-1582 CVE-2013-1586 CVE-2013-1588 CVE-2013-1590	Version:	7
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	wireshark
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND wireshark DPKG is earlier than 1.2.11-6+squeeze9

Definition Id: oval:org.mitre.oval:def:20036

Oval ID:	oval:org.mitre.oval:def:20036
Title:	DSA-2644-1 wireshark - several
Description:	Multiple vulnerabilities were discovered in the dissectors for the MS-MMS, RTPS, RTPS2, Mount, ACN, CIMD and DTLS protocols, which could result in denial of service or the execution of arbitrary code.
Family:	unix	Class:	patch
Reference(s):	DSA-2644-1 CVE-2013-2478 CVE-2013-2480 CVE-2013-2481 CVE-2013-2483 CVE-2013-2484 CVE-2013-2488	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	wireshark
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND wireshark DPKG is earlier than 0:1.2.11-6+squeeze10

Definition Id: oval:org.mitre.oval:def:25749

Oval ID:	oval:org.mitre.oval:def:25749
Title:	SUSE-SU-2013:0714-1 -- Security update for wireshark
Description:	wireshark has been updated to 1.8.6 which fixes bugs and security issues.
Family:	unix	Class:	patch
Reference(s):	SUSE-SU-2013:0714-1 CVE-2013-2475 CVE-2013-2476 CVE-2013-2477 CVE-2013-2478 CVE-2013-2479 CVE-2013-2480 CVE-2013-2481 CVE-2013-2482 CVE-2013-2483 CVE-2013-2484 CVE-2013-2485 CVE-2013-2486 CVE-2013-2487 CVE-2013-2488	Version:	3
Platform(s):	SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 10 SUSE Linux Enterprise Desktop 11 SUSE Linux Enterprise Desktop 10	Product(s):	wireshark
Definition Synopsis:
SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise Desktop 11 release section Operation system section SUSE Linux Enterprise Server 11.x is installed AND SUSE Linux Enterprise Desktop 11.x is installed AND wireshark RPM is earlier than 0:1.8.6-0.2.1 AND SUSE Linux Enterprise Server 10 and SUSE Linux Enterprise Desktop 10 release section Operation system section SUSE Linux Enterprise Server 10 is installed AND SUSE Linux Enterprise Desktop 10 is installed AND wireshark RPM is earlier than 0:1.6.14-0.5.1 AND SUSE Linux Enterprise Server 10 release section SUSE Linux Enterprise Server 10 is installed AND wireshark-devel RPM is earlier than 0:1.6.14-0.5.1

Definition Id: oval:org.mitre.oval:def:26216

Oval ID:	oval:org.mitre.oval:def:26216
Title:	SUSE-SU-2013:0322-1 -- Security update for wireshark
Description:	wireshark was updated to 1.8.5 (bnc#801131), fixing bugs and security issues.
Family:	unix	Class:	patch
Reference(s):	SUSE-SU-2013:0322-1 CVE-2013-1572 CVE-2013-1573 CVE-2013-1574 CVE-2013-1575 CVE-2013-1576 CVE-2013-1577 CVE-2013-1578 CVE-2013-1579 CVE-2013-1580 CVE-2013-1581 CVE-2013-1582 CVE-2013-1583 CVE-2013-1584 CVE-2013-1585 CVE-2013-1586 CVE-2013-1587 CVE-2013-1588 CVE-2013-1589 CVE-2013-1590	Version:	3
Platform(s):	SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 10 SUSE Linux Enterprise Desktop 11 SUSE Linux Enterprise Desktop 10	Product(s):	wireshark
Definition Synopsis:
SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise Desktop 11 release section Operation system section SUSE Linux Enterprise Server 11.x is installed AND SUSE Linux Enterprise Desktop 11.x is installed AND wireshark RPM is earlier than 0:1.8.5-0.2.1 AND SUSE Linux Enterprise Server 10 and SUSE Linux Enterprise Desktop 10 release section Operation system section SUSE Linux Enterprise Server 10 is installed AND SUSE Linux Enterprise Desktop 10 is installed AND wireshark RPM is earlier than 0:1.6.13-0.5.1 AND SUSE Linux Enterprise Server 10 release section SUSE Linux Enterprise Server 10 is installed AND wireshark-devel RPM is earlier than 0:1.6.13-0.5.1

CPE : Common Platform Enumeration

Type	Description	Count
Application	Wireshark cpe:2.3:a:wireshark:wireshark:1.8.5:::::::* cpe:2.3:a:wireshark:wireshark:1.8.4:::::::* cpe:2.3:a:wireshark:wireshark:1.8.3:::::::* cpe:2.3:a:wireshark:wireshark:1.8.2:::::::* cpe:2.3:a:wireshark:wireshark:1.8.1:::::::* cpe:2.3:a:wireshark:wireshark:1.8.0:::::::* cpe:2.3:a:wireshark:wireshark:1.6.9:::::::* cpe:2.3:a:wireshark:wireshark:1.6.8:::::::* cpe:2.3:a:wireshark:wireshark:1.6.7:::::::* cpe:2.3:a:wireshark:wireshark:1.6.6:::::::* cpe:2.3:a:wireshark:wireshark:1.6.5:::::::* cpe:2.3:a:wireshark:wireshark:1.6.4:::::::* cpe:2.3:a:wireshark:wireshark:1.6.3:::::::* cpe:2.3:a:wireshark:wireshark:1.6.2:::::::* cpe:2.3:a:wireshark:wireshark:1.6.13:::::::* cpe:2.3:a:wireshark:wireshark:1.6.12:::::::* cpe:2.3:a:wireshark:wireshark:1.6.11:::::::* cpe:2.3:a:wireshark:wireshark:1.6.10:::::::* cpe:2.3:a:wireshark:wireshark:1.6.1:::::::* cpe:2.3:a:wireshark:wireshark:1.6.0:::::::*	20
Os	Debian Debian Linux cpe:2.3:o:debian:debian_linux:7.0:::::::* cpe:2.3:o:debian:debian_linux:6.0:::::::*	2
Os	Opensuse cpe:2.3:o:opensuse:opensuse:12.3:::::::* cpe:2.3:o:opensuse:opensuse:12.2:::::::* cpe:2.3:o:opensuse:opensuse:12.1:::::::* cpe:2.3:o:opensuse:opensuse:11.4:::::::*	4

Nessus® Vulnerability Scanner

Date	Description
2016-06-01	Name : The remote Debian host is missing a security update. File : debian_DLA-497.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_wireshark_20130129.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2013-104.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2013-223.nasl - Type : ACT_GATHER_INFO
2013-04-29	Name : The remote SuSE 11 host is missing a security update. File : suse_11_wireshark-130312.nasl - Type : ACT_GATHER_INFO
2013-04-29	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_wireshark-8500.nasl - Type : ACT_GATHER_INFO
2013-04-20	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2013-055.nasl - Type : ACT_GATHER_INFO
2013-03-15	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2644.nasl - Type : ACT_GATHER_INFO
2013-03-13	Name : The remote Windows host contains an application that is affected by multiple ... File : wireshark_1_6_14.nasl - Type : ACT_GATHER_INFO
2013-03-13	Name : The remote Windows host contains an application that is affected by multiple ... File : wireshark_1_8_6.nasl - Type : ACT_GATHER_INFO
2013-02-22	Name : The remote SuSE 11 host is missing a security update. File : suse_11_wireshark-130206.nasl - Type : ACT_GATHER_INFO
2013-02-22	Name : The remote SuSE 11 host is missing a security update. File : suse_11_wireshark-130207.nasl - Type : ACT_GATHER_INFO
2013-02-22	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_wireshark-8467.nasl - Type : ACT_GATHER_INFO
2013-02-18	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2625.nasl - Type : ACT_GATHER_INFO
2013-01-30	Name : The remote Windows host contains an application that is affected by multiple ... File : wireshark_1_6_13.nasl - Type : ACT_GATHER_INFO
2013-01-30	Name : The remote Windows host contains an application that is affected by multiple ... File : wireshark_1_8_5.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2013-03-08 13:20:33	Multiple Updates
2013-03-08 09:17:43	First insertion

Global Informations

Type	Count
CWE ID(s)	21
Oval ID(s)	30
CPE ID(s)	26
Nessus® Exploit(s)	16

	Related
6.1	CVE-2013-2485
6.1	CVE-2013-2482
5	CVE-2013-2488
3.3	CVE-2013-2484
3.3	CVE-2013-2483
3.3	CVE-2013-2480
3.3	CVE-2013-2478
2.9	CVE-2013-2481
2.9	CVE-2013-1590
2.9	CVE-2013-1589
2.9	CVE-2013-1588
2.9	CVE-2013-1586
2.9	CVE-2013-1585
2.9	CVE-2013-1584
2.9	CVE-2013-1583
2.9	CVE-2013-1582
2.9	CVE-2013-1581
2.9	CVE-2013-1580
2.9	CVE-2013-1579
2.9	CVE-2013-1578
2.9	CVE-2013-1577
2.9	CVE-2013-1576
2.9	CVE-2013-1575
2.9	CVE-2013-1574
2.9	CVE-2013-1573
2.9	CVE-2013-1572
0	CVE-2012-5239
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 27 more Alert(s)

6.1 - MDVSA-2013:020

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU