Detections
Analytics
Wireshark 2.4.x < 2.4.8 Multiple Vulnerabilities
high Nessus Plugin ID 311414
Synopsis
An application installed on the remote Windows host is affected by multiple vulnerabilities.Description
The version of Wireshark installed on the remote Windows host is prior to 2.4.8. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.8 advisory.- In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/airpdcap.c via bounds checking that prevents a buffer over-read. (CVE-2018-14370)
- In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by properly handling items that are too long. (CVE-2018-14368)
- In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was addressed in epan/dissectors/packet-bgp.c by validating Path Attribute lengths.
(CVE-2018-14342)
- In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash. This was addressed in epan/dissectors/packet-ismp.c by validating the IPX address length to avoid a buffer over- read. (CVE-2018-14344)
- In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read. (CVE-2018-14340)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Wireshark version 2.4.8 or later.See Also
https://www.wireshark.org/docs/relnotes/wireshark-2.4.8.html
https://gitlab.com/wireshark/wireshark/-/issues/13741
https://www.wireshark.org/security/wnpa-sec-2018-34
https://gitlab.com/wireshark/wireshark/-/issues/14672
https://www.wireshark.org/security/wnpa-sec-2018-35
https://gitlab.com/wireshark/wireshark/-/issues/14675
https://www.wireshark.org/security/wnpa-sec-2018-36
https://gitlab.com/wireshark/wireshark/-/issues/14682
https://www.wireshark.org/security/wnpa-sec-2018-37
https://gitlab.com/wireshark/wireshark/-/issues/14738
https://www.wireshark.org/security/wnpa-sec-2018-38
https://gitlab.com/wireshark/wireshark/-/issues/14742
https://www.wireshark.org/security/wnpa-sec-2018-39
https://gitlab.com/wireshark/wireshark/-/issues/14841
https://www.wireshark.org/security/wnpa-sec-2018-40
https://gitlab.com/wireshark/wireshark/-/issues/14869
https://www.wireshark.org/security/wnpa-sec-2018-41
https://gitlab.com/wireshark/wireshark/-/issues/14966
https://www.wireshark.org/security/wnpa-sec-2018-42
Plugin Details
Severity: High
ID: 311414
File Name: wireshark_2_4_8.nasl
Version: 1.1
Type: Local
Agent: windows
Family: Windows
Published: 5/1/2026
Updated: 5/1/2026
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: High
Base Score: 7.8
Temporal Score: 6.1
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS Score Source: CVE-2018-14368
CVSS v3
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CVSS Score Source: CVE-2018-14370
Vulnerability Information
CPE: cpe:/a:wireshark:wireshark
Required KB Items: installed_sw/Wireshark, SMB/Registry/Enumerated
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 7/18/2018
Vulnerability Publication Date: 7/18/2018
Reference Information
CVE: CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE-2018-14342, CVE-2018-14343, CVE-2018-14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-14370
IAVB: 2018-B-0093-S