KLA11201
Multiple vulnerabilities in Wireshark
Обновлено: 26/06/2019
Дата обнаружения
23/02/2018
Уровень угрозы
Warning
Описание

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. An improper operand validation offsets in the SIGCOMP protocol dissector can be exploited remotely via malformed packet trace file to cause denial of service;
  2. Infinite loops in multiple dissectors can be exploited remotely via malformed packet to cause denial of service;
  3. An improper certain types of packets handling in the UMTS MAC dissector can be exploited remotely via malformed packet to cause denial of service;
  4. An improper certain types of packets handling in the IEEE 802.11 dissector can be exploited remotely via malformed packet to cause denial of service;
  5. An improper certain types of packets handling in the FCP protocol dissector can be exploited remotely via malformed packet to cause denial of service;
  6. An improper certain types of packets handling in the DOCSIS dissector can be exploited remotely via malformed packet to cause denial of service;
  7. An unspecified vulnerability in pcapng file parser can be exploited remotely via malformed packet to cause denial of service;
  8. An unspecified vulnerability in the IPMI dissector can be exploited remotely via malformed packet to cause denial of service;
  9. An unspecified vulnerability in the SIGCOMP dissector can be exploited remotely via malformed packet to cause denial of service;
  10. An unspecified vulnerability in the NBAP dissector can be exploited remotely via malformed packet to cause denial of service;
Пораженные продукты

Wireshark 2.4.x earlier than 2.4.5
Wireshark 2.2.x earlier than 2.2.13

Решение

Update to the latest version
Get Wireshark

Первичный источник обнаружения
WNPA-SEC-2018-13
WNPA-SEC-2018-11
WNPA-SEC-2018-09
WNPA-SEC-2018-08
WNPA-SEC-2018-06
WNPA-SEC-2018-12
WNPA-SEC-2018-10
WNPA-SEC-2018-14
WNPA-SEC-2018-05
WNPA-SEC-2018-07
Оказываемое влияние
?
DoS 
[?]
Связанные продукты
Wireshark
CVE-IDS
CVE-2018-73245.0Critical
CVE-2018-73255.0Critical
CVE-2018-73265.0Critical
CVE-2018-73275.0Critical
CVE-2018-73285.0Critical
CVE-2018-73295.0Critical
CVE-2018-73305.0Critical
CVE-2018-73315.0Critical
CVE-2018-73325.0Critical
CVE-2018-73335.0Critical
CVE-2018-73345.0Critical
CVE-2018-73355.0Critical
CVE-2018-73365.0Critical
CVE-2018-73375.0Critical
CVE-2018-73205.0Critical
CVE-2018-73215.0Critical
CVE-2018-73225.0Critical
CVE-2018-73235.0Critical