Date: 16 August 2012
References: ESB-2013.0002 ESB-2013.0039
Click here for printable version
Click here for PGP verifiable version
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
===========================================================================
AUSCERT Security Bulletin
ASB-2012.0117
A number of vulnerabilities have been identified in Wireshark
16 August 2012
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: Wireshark
Operating System: UNIX variants (UNIX, Linux, OSX)
Windows
Impact/Access: Execute Arbitrary Code/Commands -- Remote with User Interaction
Denial of Service -- Remote with User Interaction
Resolution: Patch/Upgrade
CVE Names: CVE-2012-4298 CVE-2012-4297 CVE-2012-4296
CVE-2012-4295 CVE-2012-4294 CVE-2012-4293
CVE-2012-4292 CVE-2012-4291 CVE-2012-4290
CVE-2012-4289 CVE-2012-4288 CVE-2012-4287
CVE-2012-4286 CVE-2012-4285
Member content until: Saturday, September 15 2012
OVERVIEW
A number of vulnerabilities have been identified in Wireshark prior
to versions 1.4.15, 1.6.10 and 1.8.2.
IMPACT
The vendor has provided the following details regarding these
vulnerabilities:
"wnpa-sec-2012-13
The DCP ETSI dissector could trigger a zero division. Reported by
Laurent Butti. (Bug 7566)
Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4285
wnpa-sec-2012-14
The MongoDB dissector could go into a large loop. Reported by Ben
Schmidt. (Bug 7572)
Versions affected: 1.8.0 to 1.8.1.
CVE-2012-4287
wnpa-sec-2012-15
The XTP dissector could go into an infinite loop. Reported by Ben
Schmidt. (Bug 7571)
Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4288
wnpa-sec-2012-16
The ERF dissector could overflow a buffer. Reported by Laurent
Butti. (Bug 7563)
Versions affected: 1.8.0 to 1.8.1.
CVE-2012-4294 CVE-2012-4295
wnpa-sec-2012-17
The AFP dissector could go into a large loop. Reported by Stefan
Cornelius. (Bug 7603)
Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4289
wnpa-sec-2012-18
The RTPS2 dissector could overflow a buffer. Reported by Laurent
Butti. (Bug 7568)
Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4296
wnpa-sec-2012-19
The GSM RLC MAC dissector could overflow a buffer. Reported by
Laurent Butti. (Bug 7561)
Versions affected: 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4297
wnpa-sec-2012-20
The CIP dissector could exhaust system memory. Reported by Ben
Schmidt. (Bug 7570)
Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4291
wnpa-sec-2012-21
The STUN dissector could crash. Reported by Laurent Butti. (Bug 7569)
Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4292
wnpa-sec-2012-22
The EtherCAT Mailbox dissector could abort. Reported by Laurent
Butti. (Bug 7562)
Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4293
wnpa-sec-2012-23
The CTDB dissector could go into a large loop. Reported by Ben
Schmidt. (Bug 7573)
Versions affected: 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1.
CVE-2012-4290
wnpa-sec-2012-24
The pcap-ng file parser could trigger a zero division. (Bug 7533)
Versions affected: 1.8.0 to 1.8.1.
CVE-2012-4286
wnpa-sec-2012-25
The Ixia IxVeriWave file parser could overflow a buffer. (Bug 7533)
Versions affected: 1.8.0 to 1.8.1.
CVE-2012-4298" [1]
MITIGATION
The vendor recommends upgrading to the latest version of Wireshark
to correct these issues. [2]
REFERENCES
[1] Wireshark 1.8.2 Release Notes
http://www.wireshark.org/docs/relnotes/wireshark-1.8.2.html
[2] Get Wireshark
http://www.wireshark.org/download.html
AusCERT has made every effort to ensure that the information contained
in this document is accurate. However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. AusCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=rgFb
-----END PGP SIGNATURE-----
|