KLA11151
Denial of service vulnerabilities in Wireshark

Обновлено: 18/06/2020
Дата обнаружения
30/11/2017
Уровень угрозы
Warning
Описание

Multiple vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities remotely to cause a denial of service via injecting a malformed packet.


Technical details

This vulnerabilities related to next services:

  1. NetBIOS dissector;
  2. IWARP_MPA dissector;
  3. CIP Safety dissector;

NB: This vulnerability does not have any public CVSS rating, so rating can be changed by the time.

Пораженные продукты

Wireshark versions from 2.4.0 to 2.4.2 and versions from 2.2.0 to 2.2.10

Решение

Update to the latest version
Get Wireshark

Первичный источник обнаружения
Wireshark security advisory
Wireshark security advisory
Wireshark security advisory
Оказываемое влияние
?
DoS 
[?]
Связанные продукты
Wireshark
CVE-IDS
CVE-2017-170855.0Critical
CVE-2017-170835.0Critical
CVE-2017-170845.0Critical
Эксплуатация

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/43233

Узнай статистику распространения уязвимостей в твоем регионе