This application requires Javascript for optimal performance.

Wireshark.LWRES.Dissector.Getaddrsbyname.Buffer.Overflow

Release Date Feb 23, 2010
Severity high
Impact System Compromise: Remote attackers can gain control of vulnerable systems.
Description This indicates an attack attempt against a buffer-overflow vulnerability in Wireshark. The vulnerability is caused by an error when the vulnerable software handles a malfromed LWRES packet. It may allow remote attackers to execute arbitrary code by sending a crafted LWRES packet.
Affected Products Wireshark Wireshark 1.2.5 Wireshark Wireshark 1.2.4 Wireshark Wireshark 1.2.3 Wireshark Wireshark 1.2.2 Wireshark Wireshark 1.2.1 Wireshark Wireshark 1.2 Wireshark Wireshark 1.0.10 Wireshark Wireshark 1.0.9 Wireshark Wireshark 1.0.8 Wireshark Wireshark 1.0.7 Wireshark Wireshark 1.0.6 Wireshark Wireshark 1.0.5 Wireshark Wireshark 1.0.4 Wireshark Wireshark 1.0.3 Wireshark Wireshark 1.0.2 Wireshark Wireshark 1.0.1 Wireshark Wireshark 1.0 Pardus Linux 2009 0 Ethereal Group Ethereal 0.99 Ethereal Group Ethereal 0.10.14 Ethereal Group Ethereal 0.10.13 Ethereal Group Ethereal 0.10.12 Ethereal Group Ethereal 0.10.11 Ethereal Group Ethereal 0.10.10 Ethereal Group Ethereal 0.10.9 Ethereal Group Ethereal 0.10.8 Ethereal Group Ethereal 0.10.7 Ethereal Group Ethereal 0.10.6 Ethereal Group Ethereal 0.10.5 Ethereal Group Ethereal 0.10.4 Ethereal Group Ethereal 0.10.3 Ethereal Group Ethereal 0.10.2 Ethereal Group Ethereal 0.10.1 Ethereal Group Ethereal 0.10 .10 Ethereal Group Ethereal 0.10 Ethereal Group Ethereal 0.9.16 Ethereal Group Ethereal 0.9.15 Ethereal Group Ethereal 0.9.14 Ethereal Group Ethereal 0.9.13 Ethereal Group Ethereal 0.9.12 Ethereal Group Ethereal 0.9.11 Ethereal Group Ethereal 0.9.10 Ethereal Group Ethereal 0.9.9 Ethereal Group Ethereal 0.9.8 Ethereal Group Ethereal 0.9.7 Ethereal Group Ethereal 0.9.6 Ethereal Group Ethereal 0.9.5 Ethereal Group Ethereal 0.9.4 Ethereal Group Ethereal 0.9.3 Ethereal Group Ethereal 0.9.2 Ethereal Group Ethereal 0.9.1 Ethereal Group Ethereal 0.9 Debian Linux 5.0 sparc Debian Linux 5.0 s/390 Debian Linux 5.0 powerpc Debian Linux 5.0 mipsel Debian Linux 5.0 mips Debian Linux 5.0 m68k Debian Linux 5.0 ia-64 Debian Linux 5.0 ia-32 Debian Linux 5.0 hppa Debian Linux 5.0 armel Debian Linux 5.0 arm Debian Linux 5.0 amd64 Debian Linux 5.0 alpha Debian Linux 5.0
Recommended Actions Refer to the vendor's web site for the suggested workaround: http://www.wireshark.org/security/wnpa-sec-2010-02.html
Coverage IPS VCM
Common Vulnerabilities and Exposures (CVE) CVE-2010-0304
Reference/s http://www.securityfocus.com/bid/37985 (BugTraq) http://www.exploit-db.com/exploits/11453

Reference: VID-18177

Current Threat Level

Vulnerabilities

Virus/Spyware

Spam

PGP Keys

Contact Form

Copyright © 2011 Fortinet Inc. All Rights Reserved