Detections
Analytics
Mandriva Linux Security Advisory : wireshark (MDVSA-2008:001-1)
critical Nessus Plugin ID 36583
Synopsis
The remote Mandriva Linux host is missing one or more security updates.Description
A number of vulnerabilities in the Wireshark program were found that could cause crashes, excessive looping, or arbitrary code execution.This update provides Wireshark 0.99.7 which is not vulnerable to these issues.
An updated version of libsmi is also being provided, not because of security issues, but because this version of wireshark uses it instead of net-snmp for SNMP support.
Update :
This update is being reissued without libcap (kernel capabilities) support, as that is not required by the original released packages, and thus gave trouble for a number of users.
Solution
Update the affected packages.See Also
Plugin Details
Severity: Critical
ID: 36583
File Name: mandriva_MDVSA-2008-001.nasl
Version: 1.14
Type: local
Family: Mandriva Local Security Checks
Published: 4/23/2009
Updated: 1/6/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/o:mandriva:linux:2007.1, p-cpe:/a:mandriva:linux:lib64wireshark-devel, p-cpe:/a:mandriva:linux:tshark, p-cpe:/a:mandriva:linux:lib64wireshark0, p-cpe:/a:mandriva:linux:wireshark, cpe:/o:mandriva:linux:2007, p-cpe:/a:mandriva:linux:libwireshark0, p-cpe:/a:mandriva:linux:wireshark-tools, cpe:/o:mandriva:linux:2008.0, p-cpe:/a:mandriva:linux:libwireshark-devel
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list
Patch Publication Date: 1/8/2008
Reference Information
CVE: CVE-2007-6111, CVE-2007-6112, CVE-2007-6113, CVE-2007-6114, CVE-2007-6115, CVE-2007-6116, CVE-2007-6117, CVE-2007-6118, CVE-2007-6119, CVE-2007-6120, CVE-2007-6121, CVE-2007-6438, CVE-2007-6439, CVE-2007-6441, CVE-2007-6450, CVE-2007-6451