Description
There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:
- In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite
loop, triggered by packet injection or a malformed capture file. This was addressed in
epan/dissectors/packet-rpcrdma.c by correctly checking for going beyond the maximum offset.
(CVE-2017-7705)
- In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an infinite loop,
triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring a nonzero
record size. (CVE-2017-7700)
- In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop,
triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-
bgp.c by using a different integer data type. (CVE-2017-7701)
- In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop,
triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-
wbxml.c by adding length validation. (CVE-2017-7702)
- In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the IMAP dissector could crash, triggered by packet
injection or a malformed capture file. This was addressed in epan/dissectors/packet-imap.c by calculating
a line's end correctly. (CVE-2017-7703)
Plugin Details
Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security
Risk Information
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
Exploit Ease: No known exploits are available
Vulnerability Publication Date: 4/12/2017
Reference Information
CVE: CVE-2017-7700, CVE-2017-7701, CVE-2017-7702, CVE-2017-7703, CVE-2017-7704, CVE-2017-7705
BID: 97630, 97631, 97632, 97633, 97634, 97636