[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96125

 
 

909

 
 

78020

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2008:242 -- Mandriva wireshark

ID: oval:org.secpod.oval:def:301639Date: (C)2012-01-07   (M)2017-10-04
Class: PATCHFamily: unix




Two vulnerabilities were discovered in Wireshark. The first is a vulnerability in the SMTP dissector that could cause it to consume excessive CPU and memory via a long SMTP request . The second is an issue with the WLCCP dissector that could cause it to go into an infinite loop. This update also provides a patch to fix a potential freeze during capture interface selection. This update provides Wireshark 1.0.5, which is not vulnerable to these issues.

Platform:
Mandriva Linux 2009.0
Mandriva Linux 2008.1
Product:
wireshark
Reference:
MDVSA-2008:242
CVE-2008-6472
CVE-2008-5285
CVE    2
CVE-2008-5285
CVE-2008-6472
CPE    15
cpe:/o:mandriva:linux:2008.1
cpe:/o:mandriva:linux:2009.0
cpe:/a:wireshark:wireshark:1.0.2
cpe:/a:wireshark:wireshark:1.0.1
...

© 2013 SecPod Technologies