Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.802502 |
Categoría: | General |
Título: | Wireshark Heap Based BOF and Denial of Service Vulnerabilities (Windows) |
Resumen: | The host is installed with Wireshark and is prone to heap based; buffer overflow and denial of service vulnerabilities. |
Descripción: | Summary: The host is installed with Wireshark and is prone to heap based buffer overflow and denial of service vulnerabilities. Vulnerability Insight: The flaws are due to - An error while parsing ERF file format. This could cause wireshark to crash by reading a malformed packet trace file. - An error in dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector, could dereference a NULL pointer. Vulnerability Impact: Successful exploitation could allow attackers to cause a denial of service via via a malformed packet. Affected Software/OS: Wireshark version 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 Solution: Upgrade to the Wireshark version 1.6.3 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P |
Referencia Cruzada: |
BugTraq ID: 50486 BugTraq ID: 50481 Common Vulnerability Exposure (CVE) ID: CVE-2011-4102 http://www.securityfocus.com/bid/50486 http://openwall.com/lists/oss-security/2011/11/01/9 http://osvdb.org/76770 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15073 RedHat Security Advisories: RHSA-2013:0125 http://rhn.redhat.com/errata/RHSA-2013-0125.html http://secunia.com/advisories/46644 http://secunia.com/advisories/46913 http://secunia.com/advisories/48947 XForce ISS Database: wireshark-erf-bo(71092) https://exchange.xforce.ibmcloud.com/vulnerabilities/71092 Common Vulnerability Exposure (CVE) ID: CVE-2011-4101 http://www.securityfocus.com/bid/50481 http://osvdb.org/76769 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14760 XForce ISS Database: wireshark-infiniband-dissector-dos(71091) https://exchange.xforce.ibmcloud.com/vulnerabilities/71091 |
Copyright | Copyright (C) 2011 Greenbone Networks GmbH |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |