Denial of Service : Wireshark < 4.2.0 DoS Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.128010

Categoría: Denial of Service

Título: Wireshark < 4.2.0 DoS Vulnerabilities

Resumen: Wireshark is prone to multiple denial of service (DoS); vulnerabilities.

Descripción: Summary:
Wireshark is prone to multiple denial of service (DoS)
vulnerabilities.

Vulnerability Insight:
Multiple flaws exist due to:

- An issue in Wireshark function dissect_bgp_open of file packet-bgp.c.

- A buffer overflow vulnerability in ws_manuf_lookup_str of file pan/addr_resolv.c.

- A buffer overflow vulnerability in format_fractional_part_nsecs of file wsutil/to_str.c.

For more information about the vulnerabilities refer to Reference links.

Vulnerability Impact:
Successful exploitation may allow
remote attackers to perform denial of service on an affected system.

Affected Software/OS:
Wireshark versions prior to 4.2.0.

Solution:
Update to version 4.2.0 or later.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2024-24478
https://gist.github.com/1047524396/e82c55147cd3cb62ef20cbdb0ec83694
https://github.com/wireshark/wireshark/commit/80a4dc55f4d2fa33c2b36a99406500726d3faaef
https://gitlab.com/wireshark/wireshark/-/issues/19347
Common Vulnerability Exposure (CVE) ID: CVE-2024-24476
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZT2BX7UARZVVWKITSZMHW7BHXGIKRSR2/
https://gist.github.com/1047524396/369ba0ccffe255cf8142208b6142be2b
https://github.com/wireshark/wireshark/commit/108217f4bb1afb8b25fc705c2722b3e328b1ad78
https://gitlab.com/wireshark/wireshark/-/issues/19344
Common Vulnerability Exposure (CVE) ID: CVE-2024-24479
https://gist.github.com/1047524396/c50ad17e9a1a18990043a7cd27814c78
https://github.com/wireshark/wireshark/commit/c3720cff158c265dec2a0c6104b1d65954ae6bfd

Copyright Copyright (C) 2024 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.128010
Categoría:	Denial of Service
Título:	Wireshark < 4.2.0 DoS Vulnerabilities
Resumen:	Wireshark is prone to multiple denial of service (DoS); vulnerabilities.
Descripción:	Summary: Wireshark is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - An issue in Wireshark function dissect_bgp_open of file packet-bgp.c. - A buffer overflow vulnerability in ws_manuf_lookup_str of file pan/addr_resolv.c. - A buffer overflow vulnerability in format_fractional_part_nsecs of file wsutil/to_str.c. For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation may allow remote attackers to perform denial of service on an affected system. Affected Software/OS: Wireshark versions prior to 4.2.0. Solution: Update to version 4.2.0 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2024-24478 https://gist.github.com/1047524396/e82c55147cd3cb62ef20cbdb0ec83694 https://github.com/wireshark/wireshark/commit/80a4dc55f4d2fa33c2b36a99406500726d3faaef https://gitlab.com/wireshark/wireshark/-/issues/19347 Common Vulnerability Exposure (CVE) ID: CVE-2024-24476 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZT2BX7UARZVVWKITSZMHW7BHXGIKRSR2/ https://gist.github.com/1047524396/369ba0ccffe255cf8142208b6142be2b https://github.com/wireshark/wireshark/commit/108217f4bb1afb8b25fc705c2722b3e328b1ad78 https://gitlab.com/wireshark/wireshark/-/issues/19344 Common Vulnerability Exposure (CVE) ID: CVE-2024-24479 https://gist.github.com/1047524396/c50ad17e9a1a18990043a7cd27814c78 https://github.com/wireshark/wireshark/commit/c3720cff158c265dec2a0c6104b1d65954ae6bfd
Copyright	Copyright (C) 2024 Greenbone AG