| VID |
50083 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The installed version of Wireshark 1.12 is earlier than 1.12.9. It is, therefore, affected by multiple denial of service vulnerabilities in the following components :
- 802.11 dissector
- AllJoyn dissector
- ANSI A dissector
- Ascend file parser
- BER dissector
- DCOM dissector
- DIAMETER dissector
- DNS dissector
- GSM A dissector
- NBAP dissector
- NLM dissector
- RSL dissector
- RSVP dissector
- SCTP dissector
- SDP dissector
- Sniffer file parser
- T.38 dissector
- UMTS FP dissector
- VeriWave file parser
- ZigBee ZCL dissector
- zlib compression
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of this condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
https://www.wireshark.org/docs/relnotes/wireshark-1.12.9.html
* Platforms Affected:
Wireshark versions 1.12.x before 1.12.9
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version Wireshark (1.12.9 or later), available from the Wireshark.org Web site at http://www.wireshark.org/download/win32/all-versions/ |
| Related URL |
CVE-2015-8711,CVE-2015-8712,CVE-2015-8713,CVE-2015-8714,CVE-2015-8715,CVE-2015-8716,CVE-2015-8717,CVE-2015-8718,CVE-2015-8719,CVE-2015-8720 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
