Fedora Core 5 : wireshark-0.99.2-fc5.2 (2006-860)

medium Nessus Plugin ID 24160

Synopsis

The remote Fedora Core host is missing a security update.

Description

Versions affected: 0.8.16 up to and including 0.99.0 Details Description Wireshark 0.99.2 fixes the following vulnerabilities :

- The GSM BSSMAP dissector could crash. Versions affected:
0.10.11. CVE: CVE-2006-3627

Ilja van Sprundel discovered the following vulnerabilities :

- The ANSI MAP dissector was vulnerable to a format string overflow. Versions affected: 0.10.0. CVE: CVE-2006-3628

- The Checkpoint FW-1 dissector was vulnerable to a format string overflow. Versions affected: 0.10.10. CVE:
CVE-2006-3628

- The MQ dissector was vulnerable to a format string overflow. Versions affected: 0.10.4. CVE: CVE-2006-3628

- The XML dissector was vulnerable to a format string overflow. Versions affected: 0.10.13. CVE: CVE-2006-3628

- The MOUNT dissector could attempt to allocate large amounts of memory. Versions affected: 0.9.4. CVE:
CVE-2006-3629

- The NCP NMAS and NDPS dissectors were susceptible to off-by-one errors. Versions affected: 0.9.7. CVE:
CVE-2006-3630

- The NTP dissector was vulnerable to a format string overflow. Versions affected: 0.10.13. CVE: CVE-2006-3628

- The SSH dissector was vulnerable to an infinite loop.
Versions affected: 0.9.10. CVE: CVE-2006-3631

- The NFS dissector may have been susceptible to a buffer overflow. Versions affected: 0.8.16. CVE: CVE-2006-3632

Impact It may be possible to make Ethereal crash, use up available memory, or run arbitrary code by injecting a purposefully malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 0.99.2.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected wireshark, wireshark-debuginfo and / or wireshark-gnome packages.

See Also

http://www.nessus.org/u?4e595c9e

Plugin Details

Severity: Medium

ID: 24160

File Name: fedora_2006-860.nasl

Version: 1.16

Type: local

Agent: unix

Published: 1/17/2007

Updated: 1/11/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:wireshark-gnome, cpe:/o:fedoraproject:fedora_core:5, p-cpe:/a:fedoraproject:fedora:wireshark-debuginfo, p-cpe:/a:fedoraproject:fedora:wireshark

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 7/28/2006

Reference Information

CVE: CVE-2006-3627

FEDORA: 2006-860