Detections
Analytics

Wireshark 2.0.x < 2.0.5 Multiple Vulnerabilities (macOS)

high Nessus Plugin ID 311440

Synopsis

An application installed on the remote macOS / Mac OS X host is affected by multiple vulnerabilities.

Description

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.0.5. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.0.5 advisory.

 - CORBA IDL dissectors could crash on 64-bit Windows. It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
 (wireshark-bug-12495)

 - The PacketBB dissector could divide by zero. It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. (wireshark- bug-12577)

 - The WSP dissector could go into an infinite loop. It may be possible to make Wireshark consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. (wireshark-bug-12594)

 - The RLC dissector could go into a long loop. It may be possible to make Wireshark consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. (wireshark-bug-12660)

 - The LDSS dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. (wireshark-bug-12662)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade to Wireshark version 2.0.5 or later.

See Also

https://www.wireshark.org/docs/relnotes/wireshark-2.0.5.html

https://gitlab.com/wireshark/wireshark/-/issues/12495

https://www.wireshark.org/security/wnpa-sec-2016-39

https://gitlab.com/wireshark/wireshark/-/issues/12577

https://www.wireshark.org/security/wnpa-sec-2016-41

https://gitlab.com/wireshark/wireshark/-/issues/12594

https://www.wireshark.org/security/wnpa-sec-2016-42

https://gitlab.com/wireshark/wireshark/-/issues/12660

https://www.wireshark.org/security/wnpa-sec-2016-44

https://gitlab.com/wireshark/wireshark/-/issues/12662

https://www.wireshark.org/security/wnpa-sec-2016-45

https://gitlab.com/wireshark/wireshark/-/issues/12664

https://www.wireshark.org/security/wnpa-sec-2016-46

https://gitlab.com/wireshark/wireshark/-/issues/12659

https://www.wireshark.org/security/wnpa-sec-2016-47

https://gitlab.com/wireshark/wireshark/-/issues/12661

https://www.wireshark.org/security/wnpa-sec-2016-48

https://gitlab.com/wireshark/wireshark/-/issues/12663

https://www.wireshark.org/security/wnpa-sec-2016-49

Plugin Details

Severity: High

ID: 311440

File Name: macosx_wireshark_2_0_5.nasl

Version: 1.1

Type: Local

Agent: macosx

Published: 5/1/2026

Updated: 5/1/2026

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Nessus

Vulnerability Information

CPE: cpe:/a:wireshark:wireshark

Required KB Items: Host/local_checks_enabled, Host/MacOSX/Version, installed_sw/Wireshark

Exploit Ease: No known exploits are available

Patch Publication Date: 7/27/2016

Vulnerability Publication Date: 7/27/2016