Test ID:	1.3.6.1.4.1.25623.1.0.57290
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDKSA-2006:152 (wireshark)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to wireshark announced via advisory MDKSA-2006:152. Vulnerabilities in the SCSI, DHCP, and SSCOP dissectors were discovered in versions of wireshark less than 0.99.3, as well as an off-by-one error in the IPsec ESP preference parser if compiled with ESP decryption support. This updated provides wireshark 0.99.3a which is not vulnerable to these issues. Affected: 2006.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2006:152 http://www.wireshark.org/security/wnpa-sec-2006-02.html Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4330 1016736 http://securitytracker.com/id?1016736 19690 http://www.securityfocus.com/bid/19690 20060825 rPSA-2006-0158-1 tshark wireshark http://www.securityfocus.com/archive/1/444323/100/0/threaded 21597 http://secunia.com/advisories/21597 21619 http://secunia.com/advisories/21619 21649 http://secunia.com/advisories/21649 21682 http://secunia.com/advisories/21682 21885 http://secunia.com/advisories/21885 22378 http://secunia.com/advisories/22378 ADV-2006-3370 http://www.vupen.com/english/advisories/2006/3370 GLSA-200608-26 http://security.gentoo.org/glsa/glsa-200608-26.xml MDKSA-2006:152 http://www.mandriva.com/security/advisories?name=MDKSA-2006:152 RHSA-2006:0658 http://www.redhat.com/support/errata/RHSA-2006-0658.html VU#808832 http://www.kb.cert.org/vuls/id/808832 http://support.avaya.com/elmodocs2/security/ASA-2006-227.htm http://www.wireshark.org/security/wnpa-sec-2006-02.html https://issues.rpath.com/browse/RPL-597 oval:org.mitre.oval:def:14684 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14684 oval:org.mitre.oval:def:9869 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9869 wireshark-esp-offbyone(28553) https://exchange.xforce.ibmcloud.com/vulnerabilities/28553 wireshark-scsi-dos(28550) https://exchange.xforce.ibmcloud.com/vulnerabilities/28550 Common Vulnerability Exposure (CVE) ID: CVE-2006-4331 VU#638376 http://www.kb.cert.org/vuls/id/638376 oval:org.mitre.oval:def:10125 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10125 oval:org.mitre.oval:def:14587 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14587 Common Vulnerability Exposure (CVE) ID: CVE-2006-4332 BugTraq ID: 19690 CERT/CC vulnerability note: VU#335656 http://www.kb.cert.org/vuls/id/335656 XForce ISS Database: wireshark-dhcp-dos(28554) https://exchange.xforce.ibmcloud.com/vulnerabilities/28554 XForce ISS Database: wireshark-esp-offbyone(28553)
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.