Vigil@nce: Wireshark, denials of service
October 2008 by Vigil@nce
SYNTHESIS
Several vulnerabilities of Wireshark can be used by a remote
attacker to create a denial of service.
Gravity: 1/4
Consequences: denial of service of service
Provenance: internet client
Means of attack: no proof of concept, no attack
Ability of attacker: expert (4/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: high (3/3)
Number of vulnerabilities in this bulletin: 7
Creation date: 21/10/2008
IMPACTED PRODUCTS
– Unix - plateform
DESCRIPTION
The Wireshark/Ethereal program captures packets, in order to help
administrator solving network problems. Protocols are decoded by
dissectors. They have several vulnerabilities.
An attacker can send Bluetooth ACL data in order to stop
Wireshark. [grav:1/4]
An attacker can send Q.931 data in order to stop Wireshark.
[grav:1/4]
An attacker can invite the administrator to open a Tamos CommView
capture in order to stop Wireshark. [grav:1/4]
A local attacker can send USB data in order to stop Wireshark.
[grav:1/4]
An attacker can send Bluetooth RFCOMM data in order to stop
Wireshark. [grav:1/4]
An attacker can send PRP data in order to stop Wireshark.
[grav:1/4]
An attacker can send MATE data in order to stop Wireshark.
[grav:1/4]
CHARACTERISTICS
Identifiers: VIGILANCE-VUL-8187, wnpa-sec-2008-06