FreeBSD : Wireshark -- DoS in the BER-based dissectors (b2eaa7c2-e64a-11df-bc65-0022156e8794)
Medium Nessus Plugin ID 50500
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionSecunia reports :
A vulnerability has been discovered in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an infinite recursion error in the 'dissect_unknown_ber()' function in epan/dissectors/packet-ber.c and can be exploited to cause a stack overflow e.g. via a specially crafted SNMP packet.
The vulnerability is confirmed in version 1.4.0 and reported in version 1.2.11 and prior and version 1.4.0 and prior.
SolutionUpdate the affected packages.