NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3746 advisory.

  - BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service     via packet injection or crafted capture file (CVE-2023-4511)

  - BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via     packet injection or crafted capture file (CVE-2023-4513)

  - GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via     packet injection or crafted capture file (CVE-2024-0208)

  - SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted     capture file (CVE-2023-6174) (CVE-2023-6175)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-fdc7dfb959 advisory.

  - RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via     packet injection or crafted capture file (CVE-2023-5371)

  - SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted     capture file (CVE-2023-6174)

  - NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via     crafted capture file (CVE-2023-6175)

  - GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via     packet injection or crafted capture file (CVE-2024-0208)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-b72131479b advisory.

  - RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via     packet injection or crafted capture file (CVE-2023-5371)

  - SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted     capture file (CVE-2023-6174)

  - NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via     crafted capture file (CVE-2023-6175)

  - GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via     packet injection or crafted capture file (CVE-2024-0208)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4938-1 advisory.

  - The NetScreen file parser could crash. It may be possible to make Wireshark crash by injecting a malformed     packet onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2023-6175)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-440 advisory.

  - SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted     capture file (CVE-2023-6174)

  - The NetScreen file parser could crash. It may be possible to make Wireshark crash by injecting a malformed     packet onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2023-6175)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of wireshark installed on the remote host is prior to 2.6.2-15. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2348 advisory.

  - The NetScreen file parser could crash. It may be possible to make Wireshark crash by injecting a malformed     packet onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2023-6175)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5559 advisory.

  - SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted     capture file (CVE-2023-6174)

  - The NetScreen file parser could crash. It may be possible to make Wireshark crash by injecting a malformed     packet onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2023-6175)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.0.11. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.0.11 advisory.

  - The SSH dissector could crash. It may be possible to make Wireshark crash or consume excessive CPU     resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed     packet trace file. (wireshark-bug-19369)

  - The NetScreen file parser could crash. It may be possible to make Wireshark crash by injecting a malformed     packet onto the wire or by convincing someone to read a malformed packet trace file. (wireshark-bug-19404)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote Windows host is prior to 4.0.11. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.0.11 advisory.

  - The SSH dissector could crash. It may be possible to make Wireshark crash or consume excessive CPU     resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed     packet trace file. (wireshark-bug-19369)

  - The NetScreen file parser could crash. It may be possible to make Wireshark crash by injecting a malformed     packet onto the wire or by convincing someone to read a malformed packet trace file. (wireshark-bug-19404)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.6.19. It is, therefore, affected by a vulnerability as referenced in the wireshark-3.6.19 advisory.

  - The NetScreen file parser could crash. It may be possible to make Wireshark crash by injecting a malformed     packet onto the wire or by convincing someone to read a malformed packet trace file. (wireshark-bug-19404)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote Windows host is prior to 3.6.19. It is, therefore, affected by a vulnerability as referenced in the wireshark-3.6.19 advisory.

  - The NetScreen file parser could crash. It may be possible to make Wireshark crash by injecting a malformed     packet onto the wire or by convincing someone to read a malformed packet trace file. (wireshark-bug-19404)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
196731	RHEL 6 : wireshark (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	critical
196709	RHEL 7 : wireshark (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	critical
191458	Debian dla-3746 : libwireshark-data - security update	Nessus	Debian Local Security Checks	high
190389	Fedora 38 : wireshark (2024-fdc7dfb959)	Nessus	Fedora Local Security Checks	high
190384	Fedora 39 : wireshark (2024-b72131479b)	Nessus	Fedora Local Security Checks	high
187141	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : wireshark (SUSE-SU-2023:4938-1)	Nessus	SuSE Local Security Checks	high
186973	Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-440)	Nessus	Amazon Linux Local Security Checks	medium
186566	Amazon Linux 2 : wireshark (ALAS-2023-2348)	Nessus	Amazon Linux Local Security Checks	high
186008	Debian DSA-5559-1 : wireshark - security update	Nessus	Debian Local Security Checks	medium
185777	Wireshark 4.0.x < 4.0.11 Multiple Vulnerabilities (macOS)	Nessus	MacOS X Local Security Checks	medium
185776	Wireshark 4.0.x < 4.0.11 Multiple Vulnerabilities	Nessus	Windows	medium
185772	Wireshark 3.6.x < 3.6.19 A Vulnerability (macOS)	Nessus	MacOS X Local Security Checks	high
185771	Wireshark 3.6.x < 3.6.19 A Vulnerability	Nessus	Windows	high

Detections

Analytics

CVE-2023-6175

high

Tenable Plugins

critical

critical

high

high

high

high

medium

high

medium

medium

medium

high

high