CERT-MU :Advisories

Multiple Vulnerabilities in Wireshark

Original issue date: 23 June, 2010

Overview

Multiple vulnerabilities have been reported in Wireshark, which could be exploited by attackers to cause a denial of service or compromise a vulnerable system by infecting a series of crafted packets or persuade the victim to read a malformed trace file.

Description

SMB dissector Vulnerability

The vulnerability exists due to a NULL pointer dereference error in the SMB dissector, which could be exploited to crash an affected application. An remote attacker could exploit this vulnerability by sending some malicious packets to cause the application to crash.

ASN.1 BER dissector Vulnerability

The vulnerability is due to buffer overflow error within the ASN.1 BER dissector. A remote attacker could exploit this issue by executing an arbitrary code or crash an affected application.

SMB PIPE dissector Vulnerability

The vulnerability exists in Wireshark by a NULL pointer dereference in the SMB PIPE dissector. An remote attacker could exploit this vulnerability by loading a specailly-crafted trace file or by sending some malicious packets to cause the application to crash.

Infinite loop of SigComp Universal Decompressor Vulnerability

This vulnerability have been caused by an infinite loop in the SigComp Universal Decompressor Virtual Machine, which could be exploited to crash an affected application.

Software Affected

Wireshark versions 1.2.0 through 1.2.8
Wireshark versions 0.8.20 through 1.0.13Impact

Impact

Severity Rating: High