KLA11151
Denial of service vulnerabilities in Wireshark
Обновлено: 05/12/2017
CVSS
5.0
Дата обнаружения
30/11/2017
Уровень угрозы
Warning
Описание

Multiple vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities remotely  to cause a denial of service via injecting a malformed packet. 


Technical details

This vulnerabilities related to next services: 

  1. NetBIOS dissector;
  2. IWARP_MPA dissector;
  3. CIP Safety dissector;

NB: This vulnerability does not have any public CVSS rating, so rating can be changed by the time.

Пораженные продукты

Wireshark versions from 2.4.0 to 2.4.2 and versions from 2.2.0 to 2.2.10
 

Решение

Update to the latest version
Get Wireshark

Первичный источник обнаружения
Wireshark security advisory
Wireshark security advisory
Wireshark security advisory
Оказываемое влияние
?
DoS 
[?]
Связанные продукты
Wireshark
CVE-IDS

CVE-2017-17085
CVE-2017-17084
CVE-2017-17083