KLA11401
Multiple vulnerabilities in Wireshark
Updated: 05/22/2020
Detect date
?
01/08/2019
Severity
?
Warning
Description

Multiple serious vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. An unspecified vulnerability in 6LoWPAN dissector can be exploited remotely via malformed packet to cause denial of service;
  2. An unspecified vulnerability in P_MUL dissector can be exploited remotely via malformed packet to cause denial of service;
  3. An unspecified vulnerability in RTSE dissector can be exploited remotely via malformed packet to cause denial of service;
  4. An unspecified vulnerability in ISAKMP dissector can be exploited remotely via malformed packet to cause denial of service;
  5. An unspecified vulnerability in ENIP protocol dissector can be exploited remotely via malformed packet to cause denial of service;
Affected products

Wireshark 2.6.x earlier than 2.6.6
Wireshark 2.4.x earlier than 2.4.12

Solution

Update to the latest version
Get Wireshark

Original advisories

wnpa-sec-2019-01
wnpa-sec-2019-02
wnpa-sec-2019-03
wnpa-sec-2019-04
wnpa-sec-2019-05

Impacts
?
DoS 
[?]
Related products
Wireshark
CVE-IDS
?