#VU45102 Stack-based buffer overflow in Wireshark - CVE-2011-1591

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing a crafted .pcap file. A remote unauthenticated attacker can trigger stack-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Remediation

External links

• http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058900.html
• http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058983.html
• http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058993.html
• http://openwall.com/lists/oss-security/2011/04/18/2
• http://openwall.com/lists/oss-security/2011/04/18/8
• http://secunia.com/advisories/44172
• http://secunia.com/advisories/44374
• http://securitytracker.com/id?1025389
• http://www.exploit-db.com/exploits/17185
• http://www.exploit-db.com/exploits/17195
• http://www.kb.cert.org/vuls/id/243670
• http://www.mandriva.com/security/advisories?name=MDVSA-2011:083
• http://www.osvdb.org/71848
• http://www.vupen.com/english/advisories/2011/1022
• http://www.vupen.com/english/advisories/2011/1106
• http://www.wireshark.org/security/wnpa-sec-2011-06.html
• https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5836
• https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5838
• https://exchange.xforce.ibmcloud.com/vulnerabilities/66834
• https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15000