KLA10905
Multiple denial of service vulnerabilities in Wireshark

Обновлено: 03/06/2020

Дата обнаружения	16/11/2016
Уровень угрозы	Warning
Описание	Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. These vulnerabilities can be exploited remotely via a specially designed files or packets. Below is a complete list of vulnerabilities Lack of certain length values size OpenFlow dissector; Infinite loop at DTN dissector; An improper handling of signature variable state tracking at AllJoyn dissector; An improper private strings handling at DCERPC dissector; Lack of I/O objects restrictions at Profinet I/O dissector.
Пораженные продукты	Wireshark 2.2 versions earlier than 2.2.2 Wireshark 2.0 versions earlier than 2.0.8
Решение	Update to the latest version Wireshark download page
Первичный источник обнаружения	Wireshark foundation security advisories list
Оказываемое влияние ?	DoS [?]
Связанные продукты	Wireshark
CVE-IDS	CVE-2016-93764.3Warning CVE-2016-93754.3Warning CVE-2016-93744.3Warning CVE-2016-93734.3Warning CVE-2016-93724.3Warning
	Узнай статистику распространения уязвимостей в твоем регионе

KLA10905Multiple denial of service vulnerabilities in Wireshark