Download
| Alert*
|
oval:org.secpod.oval:def:300310
This advisory updates wireshark to the latest version , fixing one security issue: Heap-based buffer overflow in the dissect_ldss_transfer function in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service and possibly exec ... oval:org.secpod.oval:def:40823 The host is installed with Wireshark 1.4.x before 1.4.1 or 1.2.x before 1.2.12 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the LDSS dissector, which fails to properly handle vectors related to sigcomp-udvm.c and an off-by-one error. Successful exploitation allows ... oval:org.secpod.oval:def:17145 The host is installed with Wireshark 1.2.0 through 1.2.12 or 1.4.0 through 1.4.1 and is prone to heap based buffer overflow vulnerability. A flaw is present in the application, which fails to handle an LDSS packet with a long digest line in the dissect_ldss_transfer function (epan/dissectors/packet- ... oval:org.secpod.oval:def:500336 Wireshark is a program for monitoring network traffic. Wireshark was previously known as Ethereal. A heap-based buffer overflow flaw was found in the Wireshark Local Download Sharing Service dissector. If Wireshark read a malformed packet off a network or opened a malicious dump file, it could cras ... oval:org.secpod.oval:def:1503276 Updated wireshark packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, i ... |
