T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched.

  - wireshark: free operation on an uninitialized memory address in wiretap/netmon.c (CVE-2018-6836)

  - In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the IxVeriWave file parser could crash. This was     addressed in wiretap/vwr.c by correcting the signature timestamp bounds checks. (CVE-2018-5334)

  - In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP dissector could crash. This was addressed in     epan/dissectors/packet-wcp.c by validating the available buffer length. (CVE-2018-5335)

Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is installed.

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched.

  - wireshark: Kafka dissector infinite loop (CVE-2021-4190)

  - wireshark: ISO 15765 and ISO 10681 dissector crash (CVE-2023-1161)

  - Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via     packet injection or crafted capture file (CVE-2021-4181)

Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is installed.

The version of wireshark installed on the remote host is prior to 2.6.2-15. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2522 advisory.

  - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet     injection or crafted capture file (CVE-2024-2955)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-b96e2c3cc2 advisory.

  - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet     injection or crafted capture file (CVE-2024-2955)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-590 advisory.

  - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet     injection or crafted capture file (CVE-2024-2955)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-f644a5709c advisory.

  - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet     injection or crafted capture file (CVE-2024-2955)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote Windows host is prior to 4.0.14. It is, therefore, affected by a vulnerability as referenced in the wireshark-4.0.14 advisory.

  - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet     injection or crafted capture file (CVE-2024-2955)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.0.14. It is, therefore, affected by a vulnerability as referenced in the wireshark-4.0.14 advisory.

  - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet     injection or crafted capture file (CVE-2024-2955)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote Windows host is prior to 4.2.4. It is, therefore, affected by a vulnerability as referenced in the wireshark-4.2.4 advisory.

  - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet     injection or crafted capture file (CVE-2024-2955)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.2.4. It is, therefore, affected by a vulnerability as referenced in the wireshark-4.2.4 advisory.

  - T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet     injection or crafted capture file (CVE-2024-2955)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
199495	RHEL 8 : wireshark (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	critical
199485	RHEL 9 : wireshark (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	high
194859	Amazon Linux 2 : wireshark (ALAS-2024-2522)	Nessus	Amazon Linux Local Security Checks	high
194516	Fedora 40 : wireshark (2024-b96e2c3cc2)	Nessus	Fedora Local Security Checks	high
194501	Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2024-590)	Nessus	Amazon Linux Local Security Checks	high
193394	Fedora 39 : wireshark (2024-f644a5709c)	Nessus	Fedora Local Security Checks	high
193290	Wireshark 4.0.x < 4.0.14 A Vulnerability	Nessus	Windows	high
193289	Wireshark 4.0.x < 4.0.14 A Vulnerability (macOS)	Nessus	MacOS X Local Security Checks	high
192636	Wireshark 4.2.x < 4.2.4 A Vulnerability	Nessus	Windows	high
192635	Wireshark 4.2.x < 4.2.4 A Vulnerability (macOS)	Nessus	MacOS X Local Security Checks	high

Detections

Analytics

CVE-2024-2955

high

Tenable Plugins

critical

high

high

high

high

high

high

high

high

high