Дата обнаружения
|
18/07/2017 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause a denial of service. Below is a complete list of vulnerabilities:
Technical details For vulnerabilities (1) and (2), denial of service is a crash. Vulnerabilities (1) are related to epan/dissectors/packet-mq.c and epan/dissectors/packet-amqp.c. Denial of service, which might become a result of exploiting vulnerabilities (2) and (4), occurs because of consuming excessive CPU resources. In case of vulnerability (3), denial of service can be a crash or a system memory exhaustion. Vulnerabilities (3) is related plugins/docsis/packet-docsis.c. |
Пораженные продукты
|
Wireshark 2.0.x before 2.0.14 |
Решение
|
Update to the latest version |
Первичный источник обнаружения
|
wnpa-sec-2017-36 wnpa-sec-2017-13 wnpa-sec-2017-35 wnpa-sec-2017-34 wnpa-sec-2017-28 |
Оказываемое влияние
?
|
DoS
[?]
|
Связанные продукты
|
Wireshark |
CVE-IDS
|
CVE-2017-114117.8Critical
CVE-2017-114067.8Critical CVE-2017-114075.0Critical CVE-2017-114085.0Critical CVE-2017-114107.8Critical |
Узнай статистику распространения уязвимостей в твоем регионе |