SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Wireshark Vendors:   Wireshark.org
Wireshark X.509sat/Roofnet/LDAP/SCCP Dissector Bugs Let Remote Users Deny Service
SecurityTracker Alert ID:  1019728
SecurityTracker URL:  http://securitytracker.com/id/1019728
CVE Reference:   CVE-2008-1561, CVE-2008-1562, CVE-2008-1563   (Links to External Site)
Updated:  Apr 10 2008
Original Entry Date:  Mar 28 2008
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 0.99.2 through 0.99.8
Description:   A vulnerability was reported in Wireshark. A remote user can cause denial of service conditions.

A remote user can send specially crafted data to cause the target service to crash.

The X.509sat dissector is affected on versions 0.99.5 through 0.99.8.

The Roofnet dissector is affected on versions 0.99.5 through 0.99.8 on Windows, Solaris, and other platforms.

The LDAP dissector is affected on versions 0.99.2 through 0.99.8 on Windows and other platforms.

The 'decode as' feature of the SCCP dissector is affected on versions 0.99.6 through 0.99.8.

Impact:   A remote user can cause Wireshark to crash.
Solution:   The vendor has issued a fixed version (1.00).

The vendor's advisory is available at:

http://www.wireshark.org/security/wnpa-sec-2008-02.html

Vendor URL:  www.wireshark.org/security/wnpa-sec-2008-02.html (Links to External Site)
Cause:   Not specified
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Oct 2 2008 (Red Hat Issues Fix) Wireshark X.509sat/Roofnet/LDAP/SCCP Dissector Bugs Let Remote Users Deny Service
Red Hat has released a fix for Red Hat Enterprise Linux 3, 4, and 5.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC