SB2017120903 - Debian update for wireshark

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2017120903

SB2017120903 - Debian update for wireshark

Published: December 9, 2017 Updated: December 12, 2017

Security Bulletin ID SB2017120903
Severity
Low
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Denial of service

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Improper input validation (CVE-ID: CVE-2017-11408)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to an error in the AMQP dissector in epan/dissectors/packet-amqp.c when processing network packets. A remote attacker can send a specially crafted packet and crash the vulnerable application.


2) Out-of-bounds write (CVE-ID: CVE-2017-13766)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to out-of-bounds write in the Profinet I/O dissector. A remote attacker can inject a malformed packet onto the wire, trigger Wireshark to consume excessive CPU resources and cause the application to crash.

Successful exploitation of the vulnerability results in denial of service.

3) Improper input validation (CVE-ID: CVE-2017-17083)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to an error in the NetBIOS dissector in epan/dissectors/packet-netbios.c when processing network packets. A remote attacker can send a specially crafted packet and crash the vulnerable application.


4) Improper input validation (CVE-ID: CVE-2017-17084)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to an error in the IWARP_MPA dissector in epan/dissectors/packet-iwarp-mpa.c when processing network packets. A remote attacker can send a specially crafted packet and crash the vulnerable application.


5) Improper input validation (CVE-ID: CVE-2017-17085)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to an error in the CIP Safety dissector in epan/dissectors/packet-cipsafety.c when processing network packets. A remote attacker can send a specially crafted packet and crash the vulnerable application.


Remediation

Install update from vendor's website.

References