Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 APP:WIRESHARK-LWRES

Severity

 Minor

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 Wireshark Dissector LWRES Buffer Overflow

Release Date

 2013/05/08

Update Number

 2261

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: Wireshark Dissector LWRES Buffer Overflow


This signature detects attempts to exploit a known vulnerability against Wireshark. A successful attack can lead to arbitrary code execution.

Extended Description

Wireshark is prone to multiple buffer-overflow vulnerabilities. Exploiting these issues may allow attackers to crash the application and deny service to legitimate users. Attackers may also execute arbitrary code in the context of vulnerable users running the application. These issues affect Wireshark 0.9.0 through 1.2.5.

Affected Products

  • Avaya aura_application_enablement_services 5.2
  • Avaya aura_communication_manager 4.0
  • Avaya aura_communication_manager 4.0
  • Avaya aura_communication_manager 5.1
  • Avaya aura_communication_manager 5.2
  • Avaya aura_communication_manager 5.2.1
  • Avaya aura_session_manager 1.1
  • Avaya aura_session_manager 5.2
  • Avaya aura_sip_enablement_services 3.0
  • Avaya aura_sip_enablement_services 3.1
  • Avaya aura_sip_enablement_services 3.1.0
  • Avaya aura_sip_enablement_services 3.1.1
  • Avaya aura_sip_enablement_services 4.0
  • Avaya aura_sip_enablement_services 5.0
  • Avaya aura_sip_enablement_services 5.1
  • Avaya aura_sip_enablement_services 5.2
  • Avaya aura_sip_enablement_services 5.2.1
  • Avaya aura_system_platform 1.1
  • Avaya messaging_storage_server 1.0
  • Avaya messaging_storage_server 2.0
  • Avaya messaging_storage_server 3.1
  • Avaya messaging_storage_server 3.1 SP1
  • Avaya messaging_storage_server 4.0
  • Avaya messaging_storage_server 5.0
  • Avaya messaging_storage_server 5.1
  • Avaya messaging_storage_server MM3.0
  • Avaya messaging_storage_server
  • Debian linux 5.0
  • Debian linux 5.0 Alpha
  • Debian linux 5.0 Amd64
  • Debian linux 5.0 Arm
  • Debian linux 5.0 Armel
  • Debian linux 5.0 Hppa
  • Debian linux 5.0 Ia-32
  • Debian linux 5.0 Ia-64
  • Debian linux 5.0 M68k
  • Debian linux 5.0 Mips
  • Debian linux 5.0 Mipsel
  • Debian linux 5.0 Powerpc
  • Debian linux 5.0 S/390
  • Debian linux 5.0 Sparc
  • Ethereal_group ethereal 0.10.0
  • Ethereal_group ethereal 0.10.0 .10
  • Ethereal_group ethereal 0.10.1
  • Ethereal_group ethereal 0.10.10
  • Ethereal_group ethereal 0.10.11
  • Ethereal_group ethereal 0.10.12
  • Ethereal_group ethereal 0.10.13
  • Ethereal_group ethereal 0.10.14
  • Ethereal_group ethereal 0.10.2
  • Ethereal_group ethereal 0.10.3
  • Ethereal_group ethereal 0.10.4
  • Ethereal_group ethereal 0.10.5
  • Ethereal_group ethereal 0.10.6
  • Ethereal_group ethereal 0.10.7
  • Ethereal_group ethereal 0.10.8
  • Ethereal_group ethereal 0.10.9
  • Ethereal_group ethereal 0.9.0
  • Ethereal_group ethereal 0.9.1
  • Ethereal_group ethereal 0.9.10
  • Ethereal_group ethereal 0.9.11
  • Ethereal_group ethereal 0.9.12
  • Ethereal_group ethereal 0.9.13
  • Ethereal_group ethereal 0.9.14
  • Ethereal_group ethereal 0.9.15
  • Ethereal_group ethereal 0.9.16
  • Ethereal_group ethereal 0.9.2
  • Ethereal_group ethereal 0.9.3
  • Ethereal_group ethereal 0.9.4
  • Ethereal_group ethereal 0.9.5
  • Ethereal_group ethereal 0.9.6
  • Ethereal_group ethereal 0.9.7
  • Ethereal_group ethereal 0.9.8
  • Ethereal_group ethereal 0.9.9
  • Ethereal_group ethereal 0.99.0
  • Pardus linux_2009
  • Red_hat desktop 3.0.0
  • Red_hat enterprise_linux 5 Server
  • Red_hat enterprise_linux Desktop Version 4
  • Red_hat enterprise_linux_as 3
  • Red_hat enterprise_linux_as 4
  • Red_hat enterprise_linux_desktop 5 Client
  • Red_hat enterprise_linux_desktop_workstation 5 Client
  • Red_hat enterprise_linux_es 3
  • Red_hat enterprise_linux_es 4
  • Red_hat enterprise_linux_ws 3
  • Red_hat enterprise_linux_ws 4
  • Red_hat fedora 12
  • Suse opensuse 11.0
  • Suse opensuse 11.1
  • Suse opensuse 11.2
  • Suse suse_linux_enterprise 10 SP2
  • Suse suse_linux_enterprise 10 SP3
  • Suse suse_linux_enterprise 11
  • Suse suse_linux_enterprise_server 9
  • Wireshark wireshark 1.0.0
  • Wireshark wireshark 1.0.1
  • Wireshark wireshark 1.0.10
  • Wireshark wireshark 1.0.2
  • Wireshark wireshark 1.0.3
  • Wireshark wireshark 1.0.4
  • Wireshark wireshark 1.0.5
  • Wireshark wireshark 1.0.6
  • Wireshark wireshark 1.0.7
  • Wireshark wireshark 1.0.8
  • Wireshark wireshark 1.0.9
  • Wireshark wireshark 1.2.0
  • Wireshark wireshark 1.2.1
  • Wireshark wireshark 1.2.2
  • Wireshark wireshark 1.2.3
  • Wireshark wireshark 1.2.4
  • Wireshark wireshark 1.2.5

References

  • BugTraq: 37985
  • CVE: CVE-2010-0304
  • URL: http://www.wireshark.org/security/wnpa-sec-2010-02.html
  • URL: http://anonsvn.wireshark.org/viewvc/trunk-1.2/epan/dissectors/packet-lwres.c?view=diff&r1=31596&r2=28492&diff_format=h

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out