This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.
The remote Windows host contains an application that is affected by
The installed version of Wireshark 1.8 is earlier than 1.8.3. It thus
is affected by the following vulnerabilities :
- A malformed packet can cause the 'DRDA' and 'HSRP'
dissectors to enter an infinite loop, thereby consuming
excessive CPU resources. (CVE-2012-3548, CVE-2012-5237)
- A malformed packet can cause the 'PPP' dissector to
crash the application. (CVE-2012-5238)
- A malformed packet can trigger a buffer overflow in the
'LDP' dissector, which results in an application crash.
See also :
Upgrade to Wireshark version 1.8.3 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.6
Public Exploit Available : true