Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Wireshark Multiple Vulnerabilities-02 Dec 2012 (Mac OS X)
Information
Severity
Severity
Medium
Family
Family
General
CVSSv2 Base
CVSSv2 Base
5.8
CVSSv2 Vector
CVSSv2 Vector
AV:A/AC:L/Au:N/C:P/I:P/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
11 years ago
Modified
Modified
5 years ago
Summary
This host is installed with Wireshark and is prone to multiple vulnerabilities.
Insight
Insight
The flaws are due to - An error within the pcap-ng file parser, Ixia IxVeriWave file parser and ERF dissector can be exploited to cause a buffer overflow. - An error within the MongoDB dissector can be exploited to trigger an infinite loop and consume excessive CPU resources.
Affected Software
Affected Software
Wireshark 1.8.x before 1.8.2 on Mac OS X
Solution
Solution
Upgrade to the Wireshark version 1.8.2 or later.
Common Vulnerabilities and Exposures (CVE)
References
- http://secunia.com/advisories/50276/
- http://securitytracker.com/id/1027404
- http://www.wireshark.org/security/wnpa-sec-2012-25.html
- http://www.wireshark.org/security/wnpa-sec-2012-16.html
- http://www.wireshark.org/security/wnpa-sec-2012-14.html
- http://www.wireshark.org/security/wnpa-sec-2012-24.html
- http://www.wireshark.org/download