Detections
Analytics
GLSA-200607-09 : Wireshark: Multiple vulnerabilities
critical Nessus Plugin ID 22107
Synopsis
The remote Gentoo host is missing one or more security-related patches.Description
The remote host is affected by the vulnerability described in GLSA-200607-09 (Wireshark: Multiple vulnerabilities)Wireshark dissectors have been found vulnerable to a large number of exploits, including off-by-one errors, buffer overflows, format string overflows and an infinite loop.
Impact :
Running an affected version of Wireshark or Ethereal could allow for a remote attacker to execute arbitrary code on the user's computer by sending specially crafted packets.
Workaround :
There is no known workaround at this time.
Solution
All Wireshark users should upgrade to the latest version:# emerge --sync # emerge --ask --oneshot --verbose '>=net-analyzer/wireshark-0.99.2' All Ethereal users should migrate to Wireshark:
# emerge --sync # emerge --ask --unmerge net-analyzer/ethereal # emerge --ask --oneshot --verbose '>=net-analyzer/wireshark-0.99.2' To keep the [saved] configuration from Ethereal and reuse it with Wireshark:
# mv ~/.ethereal ~/.wireshark
See Also
Plugin Details
Severity: Critical
ID: 22107
File Name: gentoo_GLSA-200607-09.nasl
Version: 1.17
Type: local
Family: Gentoo Local Security Checks
Published: 7/28/2006
Updated: 1/6/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:gentoo:linux:ethereal, p-cpe:/a:gentoo:linux:wireshark, cpe:/o:gentoo:linux
Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list
Exploit Ease: No known exploits are available
Patch Publication Date: 7/25/2006
Reference Information
CVE: CVE-2006-3627, CVE-2006-3628, CVE-2006-3629, CVE-2006-3630, CVE-2006-3631, CVE-2006-3632
BID: 19051
CWE: 119
GLSA: 200607-09