Test Kennung:	1.3.6.1.4.1.25623.1.0.900989
Kategorie:	Denial of Service
Titel:	Wireshark Daintree SNA File Parser Denial of Service Vulnerability (Linux)
Zusammenfassung:	This host is installed with Wireshark and is prone to Denial of; Service vulnerability.
Beschreibung:	Summary: This host is installed with Wireshark and is prone to Denial of Service vulnerability. Vulnerability Insight: A boundary error occurs in the 'daintree_sna_read()' function in the Daintree SNA file parser while processing malformed captured pcap files. Vulnerability Impact: Successful exploitation will allow attackers to cause Denial of service condition by tricking the user into opening a malformed packet trace file through Wireshark. Affected Software/OS: Wireshark version 1.2.0 to 1.2.4 on Linux. Solution: Upgrade to Wireshark version 1.2.5. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	BugTraq ID: 37407 Common Vulnerability Exposure (CVE) ID: CVE-2009-4376 http://www.securityfocus.com/bid/37407 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01248.html https://bugs.wireshark.org/bugzilla/attachment.cgi?id=4022 http://osvdb.org/61177 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16435 http://www.securitytracker.com/id?1023374 http://secunia.com/advisories/37842 http://secunia.com/advisories/37916 http://www.vupen.com/english/advisories/2009/3596
Copyright	Copyright (C) 2009 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.