Wireshark 3.0.x < 3.0.7 A Vulnerability (macOS)
Medium Nessus Plugin ID 131947
SynopsisAn application installed on the remote macOS / Mac OS X host is affected by a vulnerability.
DescriptionThe version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.0.7. It is, therefore, affected by a vulnerability as referenced in the wireshark-3.0.7 advisory.
- The CMS dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2019-19553)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
SolutionUpgrade to Wireshark version 3.0.7 or later.