You are here

V-107: Wireshark Multiple Denial of Service Vulnerabilities

March 8, 2013 - 6:00am

Addthis

PROBLEM:

Multiple vulnerabilities have been reported in Wireshark

PLATFORM:

Wireshark 1.6.x and 1.8.x

ABSTRACT:

Multiple vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service).

REFERENCE LINKS:

Secunia Advisory SA52471
Wireshark Release Notes 1.8.6
Wireshark Release Notes 1.6.1.4
CVE-2013-2475
CVE-2013-2476
CVE-2013-2477
CVE-2013-2478
CVE-2013-2479
CVE-2013-2480
CVE-2013-2481
CVE-2013-2482
CVE-2013-2483
CVE-2013-2484
CVE-2013-2485
CVE-2013-2486
CVE-2013-2487
CVE-2013-2488

IMPACT ASSESSMENT:

Medium

DISCUSSION:

1) An error in the TCP dissector when processing certain packets can be exploited to cause a crash via a specially crafted packet.

2) An error in the HART/IP dissectory can be exploited to trigger infinite loops and consume CPU resources via specially crafted packets.

3) An error in the CSN.1 dissector when processing certain packets can be exploited to cause a crash via a specially crafted packet.

4) An error in the MPLS Echo dissector can be exploited to trigger infinite loops and consume CPU resources via specially crafted packets.

5) An error in the RELOAD dissector can be exploited to trigger infinite loops and consume CPU resources via specially crafted packets.

The vulnerabilities #1 through #5 affect versions 1.8.0 through 1.8.5.

6) An error in the MS-MMS dissector when processing certain packets can be exploited to cause a crash via a specially crafted packet.

7) An error in the RTPS and RTPS2 dissectors when processing certain packets can be exploited to cause a crash via a specially crafted packet.

8) An error in the Mount dissector when processing certain packets can be exploited to cause a crash via a specially crafted packet.

9) An error in the AMPQ dissector can be exploited to trigger infinite loops and consume CPU resources via specially crafted packets.

10) A division by zero error in the ACN dissector can be exploited to cause a crash via a specially crafted packet.

11) An error in the CIMD dissector when processing certain packets can be exploited to cause a crash via a specially crafted packet.

12) An error in the FCSP dissector can be exploited to trigger infinite loops and consume CPU resources via specially crafted packets.

13) An error in the DTLS dissector can be exploited to trigger infinite loops and consume CPU resources via specially crafted packets.

The vulnerabilities #6 through #13 affect versions 1.6.0 through 1.6.13 and 1.8.0 through 1.8.5.

IMPACT:

Denial of Service Vulnerabilities

SOLUTION:

The vendor has issued a patch

Addthis