Vigil@nce: Wireshark, several vulnerabilities
June 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
Several vulnerabilities of Wireshark can be used by a remote
attacker to create a denial of service or to execute code.
– Severity: 2/4
– Creation date: 10/06/2010
DESCRIPTION OF THE VULNERABILITY
The Wireshark program captures and displays network packets.
Protocols are decoded by dissectors. They are impacted by several
vulnerabilities.
An attacker can force the SMB dissector to dereference a NULL
pointer, which stops it. [severity:1/4; 4734, CVE-2010-2283]
An attacker can generate a buffer overflow in the ASN.1 BER
dissector. [severity:2/4; CVE-2010-2284]
An attacker can force the SMB PIPE dissector to dereference a NULL
pointer, which stops it. [severity:1/4; CVE-2010-2285]
An attacker can generate an infinite loop in the SigComp Universal
Decompressor Virtual Machine dissector. [severity:1/4; 4826,
CVE-2010-2286]
An attacker can generate a buffer overflow in the SigComp
Universal Decompressor Virtual Machine dissector. [severity:2/4;
4837, CVE-2010-2287]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Wireshark-several-vulnerabilities-9700