Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Производитель ПО
Наименование ПО
wireshark
(Unknown)
wireshark-gnome
(Unknown)
Описание
Уязвимость в Wireshark позволяет злоумышленникам, действующим удаленно, вызвать отказ в обслуживании (аварийное завершение), используя специально сформированный файл Tektronix .rf5.
Как исправить
Для устранения уязвимости необходимо установить последнюю версию продукта, соответствующую используемой платформе. Необходимую информацию можно получить по адресу:
http://www.wireshark.org/
http://www.wireshark.org/
Ссылки
FEDORA (FEDORA-2009-5382): https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01213.html
FEDORA (FEDORA-2009-5339): https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01167.html
FEDORA (FEDORA-2009-3599): https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00675.html
XF (wireshark-rf5file-dos(49816)): http://xforce.iss.net/xforce/xfdb/49816
CONFIRM (http://www.wireshark.org/security/wnpa-sec-2009-02.html): http://www.wireshark.org/security/wnpa-sec-2009-02.html
SECTRACK (1022027): http://www.securitytracker.com/id?1022027
BID (34457): http://www.securityfocus.com/bid/34457
BUGTRAQ (20090417 rPSA-2009-0062-1 tshark wireshark): http://www.securityfocus.com/archive/1/archive/1/502745/100/0/threaded
REDHAT (RHSA-2009:1100): http://www.redhat.com/support/errata/RHSA-2009-1100.html
MANDRIVA (MDVSA-2009:088): http://www.mandriva.com/security/advisories?name=MDVSA-2009:088
DEBIAN (DSA-1785): http://www.debian.org/security/2009/dsa-1785
CONFIRM (http://wiki.rpath.com/Advisories:rPSA-2009-0062): http://wiki.rpath.com/Advisories:rPSA-2009-0062
SUSE (SUSE-SR:2009:011): http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html
FEDORA (FEDORA-2009-5339): https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01167.html
FEDORA (FEDORA-2009-3599): https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00675.html
XF (wireshark-rf5file-dos(49816)): http://xforce.iss.net/xforce/xfdb/49816
CONFIRM (http://www.wireshark.org/security/wnpa-sec-2009-02.html): http://www.wireshark.org/security/wnpa-sec-2009-02.html
SECTRACK (1022027): http://www.securitytracker.com/id?1022027
BID (34457): http://www.securityfocus.com/bid/34457
BUGTRAQ (20090417 rPSA-2009-0062-1 tshark wireshark): http://www.securityfocus.com/archive/1/archive/1/502745/100/0/threaded
REDHAT (RHSA-2009:1100): http://www.redhat.com/support/errata/RHSA-2009-1100.html
MANDRIVA (MDVSA-2009:088): http://www.mandriva.com/security/advisories?name=MDVSA-2009:088
DEBIAN (DSA-1785): http://www.debian.org/security/2009/dsa-1785
CONFIRM (http://wiki.rpath.com/Advisories:rPSA-2009-0062): http://wiki.rpath.com/Advisories:rPSA-2009-0062
SUSE (SUSE-SR:2009:011): http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html