[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2009:058 -- Mandriva wireshark

ID: oval:org.secpod.oval:def:300958Date: (C)2012-01-07   (M)2017-10-04
Class: PATCHFamily: unix




Buffer overflow in wiretap/netscreen.c in Wireshark 0.99.7 through 1.0.5 allows user-assisted remote attackers to cause a denial of service via a malformed NetScreen snoop file. Wireshark 0.99.6 through 1.0.5 allows user-assisted remote attackers to cause a denial of service via a crafted Tektronix K12 text capture file, as demonstrated by a file with exactly one frame. Format string vulnerability in Wireshark 0.99.8 through 1.0.5 on non-Windows platforms allows local users to cause a denial of service via format string specifiers in the HOME environment variable. This update provides Wireshark 1.0.6, which is not vulnerable to these issues.

Platform:
Mandriva Linux 2009.0
Mandriva Linux 2008.1
Product:
wireshark
Reference:
MDVSA-2009:058
CVE-2009-0601
CVE-2009-0599
CVE-2009-0600
CVE    3
CVE-2009-0601
CVE-2009-0600
CVE-2009-0599
CPE    12
cpe:/o:mandriva:linux:2008.1
cpe:/o:mandriva:linux:2009.0
cpe:/a:wireshark:wireshark:0.99.8
cpe:/a:wireshark:wireshark:0.99.6
...

© 2013 SecPod Technologies