GLSA-200607-09 : Wireshark: Multiple vulnerabilities

critical Nessus Plugin ID 22107

Synopsis

The remote Gentoo host is missing one or more security-related patches.

Description

The remote host is affected by the vulnerability described in GLSA-200607-09 (Wireshark: Multiple vulnerabilities)

Wireshark dissectors have been found vulnerable to a large number of exploits, including off-by-one errors, buffer overflows, format string overflows and an infinite loop.
Impact :

Running an affected version of Wireshark or Ethereal could allow for a remote attacker to execute arbitrary code on the user's computer by sending specially crafted packets.
Workaround :

There is no known workaround at this time.

Solution

All Wireshark users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=net-analyzer/wireshark-0.99.2' All Ethereal users should migrate to Wireshark:
# emerge --sync # emerge --ask --unmerge net-analyzer/ethereal # emerge --ask --oneshot --verbose '>=net-analyzer/wireshark-0.99.2' To keep the [saved] configuration from Ethereal and reuse it with Wireshark:
# mv ~/.ethereal ~/.wireshark

Plugin Details

Severity: Critical

ID: 22107

File Name: gentoo_GLSA-200607-09.nasl

Version: 1.17

Type: local

Family: Gentoo Local Security Checks

Published: 7/28/2006

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:gentoo:linux:ethereal, p-cpe:/a:gentoo:linux:wireshark, cpe:/o:gentoo:linux

Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list

Exploit Ease: No known exploits are available

Patch Publication Date: 7/25/2006

Reference Information

CVE: CVE-2006-3627, CVE-2006-3628, CVE-2006-3629, CVE-2006-3630, CVE-2006-3631, CVE-2006-3632

BID: 19051

CWE: 119

GLSA: 200607-09

Detections

Analytics