FreeBSD : wireshark -- multiple vulnerabilities (8a835235-ae84-11dc-a5f9-001a4d49522b)

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

The Wireshark team reports of multiple vulnerabilities :

- Wireshark could crash when reading an MP3 file.

- Beyond Security discovered that Wireshark could loop excessively
while reading a malformed DNP packet.

- Stefan Esser discovered a buffer overflow in the SSL dissector.

- The ANSI MAP dissector could be susceptible to a buffer overflow on
some platforms.

- The Firebird/Interbase dissector could go into an infinite loop or
crash.

- The NCP dissector could cause a crash.

- The HTTP dissector could crash on some systems while decoding
chunked messages.

- The MEGACO dissector could enter a large loop and consume system
resources.

- The DCP ETSI dissector could enter a large loop and consume system
resources.

- Fabiodds discovered a buffer overflow in the iSeries (OS/400)
Communication trace file parser.

- The PPP dissector could overflow a buffer.

- The Bluetooth SDP dissector could go into an infinite loop.

- A malformed RPC Portmap packet could cause a crash.

- The IPv6 dissector could loop excessively.

- The USB dissector could loop excessively or crash.

- The SMB dissector could crash.

- The RPL dissector could go into an infinite loop.

- The WiMAX dissector could crash due to unaligned access on some
platforms.

- The CIP dissector could attempt to allocate a huge amount of memory
and crash. Impact It may be possible to make Wireshark or Ethereal
crash or use up available memory by injecting a purposefully malformed
packet onto the wire or by convincing someone to read a malformed
packet trace file.

See also :

http://www.wireshark.org/security/wnpa-sec-2007-03.html
http://www.nessus.org/u?37f653a8

Solution :

Update the affected packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 29772 (freebsd_pkg_8a835235ae8411dca5f9001a4d49522b.nasl)

Bugtraq ID:

CVE ID: CVE-2007-6112
CVE-2007-6113
CVE-2007-6114
CVE-2007-6115
CVE-2007-6117
CVE-2007-6118
CVE-2007-6120
CVE-2007-6121
CVE-2007-6438
CVE-2007-6439
CVE-2007-6441
CVE-2007-6450
CVE-2007-6451

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now