You are here

V-160: Wireshark Multiple Bugs Let Remote Users Deny Service

May 21, 2013 - 12:09am

Addthis

PROBLEM:

Wireshark Multiple Bugs Let Remote Users Deny Service

PLATFORM:

Versions 1.8.0 to 1.8.6

ABSTRACT:

Multiple vulnerabilities have been reported in Wireshark

REFERENCE LINKS:

Wireshark Docid: wnpa-sec-2013-23
Secunia Advisory SA53425
SecurityTracker Alert ID:  1028582
CVE-2013-2486
CVE-2013-2487
 

IMPACT ASSESSMENT:

Medium

DISCUSSION:

Multiple vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service).

1) An error in the RELOAD dissector (dissectors/packet-reload.c) can be exploited to trigger infinite loops and consume CPU resources via specially crafted packets.

2) An error in the GTPv2 dissector (dissectors/packet-gtpv2.c) can be exploited to cause a crash via specially crafted packets.

3) An error in the ASN.1 BER dissector can be exploited to cause a crash via specially crafted packets.

4) An error in the PPP CCP dissector (dissectors/packet-ppp.c) can be exploited to cause a crash via specially crafted packets.

5) An error in the DCP ETSI dissector (dissectors/packet-dcp-etsi.c) can be exploited to cause a crash via specially crafted packets.

6) An error in the MPEG DSM-CC dissector (dissectors/packet-mpeg-dsmcc.c) can be exploited to cause a crash via specially crafted packets.

7) An error in the Websocket dissector (dissectors/packet-websocket.c) can be exploited to cause a crash via specially crafted packets.

8) An error in the MySQL dissector (dissectors/packet-mysql.c) can be exploited to trigger infinite loops and consume CPU resources via specially crafted packets.

9) An error in the ETCH dissector (dissectors/packet-etch.c) can be exploited to trigger a large loop and consume CPU resources via specially crafted packets.

IMPACT:

It may be possible to make Wireshark consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.

A remote user can cause the target dissector to enter an infinite loop or crash.

SOLUTION:

Upgrade to Wireshark 1.8.7 or later.

Addthis