OSVDB ID: 85092

Title: Wireshark DRDA Dissector epan/dissectors/packet-drda.c dissect_drda Function Malformed Capture File Handling DoS

Info

Disclosure

Aug 27, 2012

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Sep 03, 2012

Description

Wireshark contains a flaw that may allow a context-dependent denial of service. The issue is triggered when the dissect_drda function in the DRDA Dissector in epan/dissectors/packet-drda.c fails to properly handle specially crafted capture files, which will result in a loss of availability.

Classification

Location: Context Dependent
Attack Type: Denial of Service
Impact: Loss of Availability
Solution: Patch / RCS
Exploit: Exploit Private
Disclosure: Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, a patch has been committed to the CVS/GIT repository that addresses this vulnerability. Until it is incorporated into the next release of the software, manually patching an existing installation is the only known available solution. Check the vendor advisory or solution URL in the references section.

Products

Wireshark Foundation	Wireshark	1.6.10
		1.8.2

References

Security Tracker: 1027464
CVE ID: 2012-3548 (see also: NVD)
Secunia Advisory ID: 48530
Bugtraq ID: 55284
Vendor Specific Solution URL: http://anonsvn.wireshark.org/viewvc?view=revision&revision=44749
Other Advisory URL: http://openwall.com/lists/oss-security/2012/08/29/4
Vendor Specific Advisory URL: https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_wireshark4
Vendor Specific News/Changelog Entry: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7666
https://bugzilla.redhat.com/show_bug.cgi?id=849926

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/85092

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Wireshark Foundation

Wireshark

References

Credit