Wireshark 1.6.x < 1.6.14 Multiple Vulnerabilities
High Nessus Plugin ID 65253
SynopsisThe remote Windows host contains an application that is affected by multiple vulnerabilities.
DescriptionThe installed version of Wireshark 1.6 is earlier than 1.6.14. It is, therefore, affected by the following vulnerabilities :
- Errors exist in the FCSP, AMPQ, SCTP, and sFlow dissector that could lead to an infinite loop resulting in a denial of service. (Bugs 7789, 7802, 8337, 8359)
- Errors exist in the CIMD, DTLS, Mount, MS-MMS, RTPS, and RTPS2 that could allow them to crash.
(Bugs 8382, 8332, 8335, 8346, 8380)
- The ACN dissector can attempt a divide by zero operation that could lead to an application crash.
SolutionUpgrade to Wireshark version 1.6.14 or later.