Release date:
Updated on:
Affected Systems:
Wireshark 1.x
Description:
--------------------------------------------------------------------------------
Wireshark (formerly known as Ethereal) is a network group analysis software. The function of the network group analysis software is to intercept network groups and display the most detailed network group data as much as possible.
Wireshark has Denial-of-Service and buffer overflow vulnerabilities. Remote attackers can exploit these vulnerabilities to cause denial-of-service attacks and control the affected systems.
1) The X.509if parser has the post-release Reuse Vulnerability, causing a crash through specially crafted packets;
(2) epan/dissectors/packet-nfs.c (NFS parser) Data Type Mismatch Error, caused by specially crafted packets crash;
3) There is an error in the DECT parser, and a buffer overflow can be caused by specially crafted packets.
<* Source: Paul makoski
Link: http://www.wireshark.org/security/wnpa-sec-2011-06.html, http://www.wireshark.org/security/wnpa-sec-2011-05.html
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Wireshark
---------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.wireshark.org/