Download
| Alert*
oval:org.secpod.oval:def:2102038
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the LWAPP dissector could crash. This was addressed in epan/dissectors/packet-lwapp.c by limiting the encapsulation levels to restrict the recursion depth. oval:org.secpod.oval:def:1800975 CVE-2018-9256: LWAPP dissector crash Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 oval:org.secpod.oval:def:1800976 CVE-2018-9256: LWAPP dissector crash Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 oval:org.secpod.oval:def:44871 The host is installed with Wireshark 2.4.0 to 2.4.5 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle the TCP dissector issue. Successful exploitation allows attackers to cause an application crash. oval:org.secpod.oval:def:44890 The host is installed with Wireshark 2.4.0 to 2.4.5 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle the TCP dissector issue. Successful exploitation allows attackers to cause an application crash. |