Test Kennung:	1.3.6.1.4.1.25623.1.0.803650
Kategorie:	Denial of Service
Titel:	Wireshark DCP ETSI Dissector DoS Vulnerability (Jun 2013) - Windows
Zusammenfassung:	Wireshark is prone to a denial of service (DoS) vulnerability.
Beschreibung:	Summary: Wireshark is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: - 'dissect_pft function' function in epan/dissectors/packet-dcp-etsi.c does not validate fragment length value. Vulnerability Impact: Successful exploitation will allow remote attackers to cause denial of service by injecting a malformed packet. Affected Software/OS: Wireshark 1.6.x before 1.6.16, 1.8.x before 1.8.8 and 1.10.0 on Windows Solution: Upgrade to the Wireshark version 1.6.16 or 1.8.8 or 1.10.1 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4083 Debian Security Information: DSA-2709 (Google Search) http://www.debian.org/security/2013/dsa-2709 http://www.gentoo.org/security/en/glsa/glsa-201308-05.xml http://www.mandriva.com/security/advisories?name=MDVSA-2013:172 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16375 RedHat Security Advisories: RHSA-2014:0341 http://rhn.redhat.com/errata/RHSA-2014-0341.html http://secunia.com/advisories/53762 http://secunia.com/advisories/54296 http://secunia.com/advisories/54425 SuSE Security Announcement: openSUSE-SU-2013:1084 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-06/msg00194.html SuSE Security Announcement: openSUSE-SU-2013:1086 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-06/msg00196.html
Copyright	Copyright (C) 2013 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.