Wireshark iSeries抓包文件处理模块远程拒绝服务漏洞

漏洞信息详情

Wireshark iSeries抓包文件处理模块远程拒绝服务漏洞

• CNNVD编号：CNNVD-200706-399
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2007-3390
  
• 漏洞类型：
  
  
  资料不足
  
• 发布时间：
  
  2007-06-25
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2007-06-27
  
• 厂        商：
  
  wireshark
• 漏洞来源：
  Wireshark※http://w…

Wireshark以前名为Ethereal，是一款非常流行的网络协议分析工具。

Wireshark的多个协议解析模块实现上存在漏洞，远程攻击者可能利用此漏洞导致控制用户机器。

如果处理了特制iSeries抓包文件就可能触发死循环或耗尽大量系统内存，导致拒绝服务。

目前厂商已经发布了升级补丁以修复这个安全问题，补丁下载链接：

Debian

——

Debian已经为此发布了一个安全公告(DSA-1322-1)以及相应补丁:

DSA-1322-1：New wireshark packages fix denial of service

链接：

http://www.debian.org/security/2007/dsa-1322

补丁下载：

Source archives:

http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.0.dsc

Size/MD5 checksum: 1066 18ea1bc407fe203089596126d9429c64

http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.0.diff.gz

Size/MD5 checksum:40945 82b8a22a1cc100e5649f278cabbcce4f

http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4.orig.tar.gz

Size/MD5 checksum: 13306790 2556a31d0d770dd1990bd67b98bd2f9b

Alpha architecture:

http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.0_alpha.deb

Size/MD5 checksum:21714 5515a1d74b23c4ed53dafe1b15709263

http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.0_alpha.deb

Size/MD5 checksum:21998 5d86aaf5e6ee3c8988ebaa9d07a2b05c

http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.0_alpha.deb

Size/MD5 checksum:21728 b58962a1f2f4797df61c9b465cb3e35c

http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.0_alpha.deb

Size/MD5 checksum:21722 5b4ee85d1b6f0b14f46604449af500dc

http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.0_alpha.deb

Size/MD5 checksum: 117204 48df4ca3664055b38c4bfa5c8196dc5a

http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.0_alpha.deb

Size/MD5 checksum: 674230 0ca5f13b6e7180c0b399a1ca1a3f9a7a

http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.0_alpha.deb

Size/MD5 checksum:9319268 fcf022b011151abcf1d7665c7b9a98a4

http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.0_alpha.deb

Size/MD5 checksum: 181530 d4a0de99d59ecd1a3e818416d31a2d32

AMD64 architecture:

http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.0_amd64.deb

Size/MD5 checksum:22304 0cb411bd110cb7be99f0b426e52b68da

http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.0_amd64.deb

Size/MD5 checksum:22658 f8f1820a2ef75ad8d693be9a235a16bf

http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.0_amd64.deb

Size/MD5 checksum:22320 f59c3f8f5fd407e89852b9fca9c46796

http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.0_amd64.deb

Size/MD5 checksum:22316 bb9fc8d3d87f2806cefb9b80e4586c1c

http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.0_amd64.deb

Size/MD5 checksum: 111908 df3804d4217ae00add067fc51945c364

http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.0_amd64.deb

Size/MD5 checksum: 618876 de929e23361608de180194014ba3dfb3

http://security.debian.org/pool/updates/main/w/wireshark/wireshark-common_0.99.4-5.etch.0_amd64.deb

Size/MD5 checksum:9119392 d1b55c76cf166fdf7eb4879f86c44172

http://security.debian.org/pool/updates/main/w/wireshark/wireshark-dev_0.99.4-5.etch.0_amd64.deb

Size/MD5 checksum: 182432 1de618e6d9329d8dccdcffeb05fe53f3

ARM architecture:

http://security.debian.org/pool/updates/main/w/wireshark/ethereal_0.99.4-5.etch.0_arm.deb

Size/MD5 checksum:22316 0e5352966a09a5fa041022147f2a9b53

http://security.debian.org/pool/updates/main/w/wireshark/ethereal-common_0.99.4-5.etch.0_arm.deb

Size/MD5 checksum:22668 613c622873d343159cc9c0984aa325f3

http://security.debian.org/pool/updates/main/w/wireshark/ethereal-dev_0.99.4-5.etch.0_arm.deb

Size/MD5 checksum:22332 9b73d9aaeaeb891ce7d659740c6ae9d7

http://security.debian.org/pool/updates/main/w/wireshark/tethereal_0.99.4-5.etch.0_arm.deb

Size/MD5 checksum:22320 c637dd98c27c170e187ef87ecb6dc7c5

http://security.debian.org/pool/updates/main/w/wireshark/tshark_0.99.4-5.etch.0_arm.deb

Size/MD5 checksum: 107000 e69e002af997a089144715e0e501f33a

http://security.debian.org/pool/updates/main/w/wireshark/wireshark_0.99.4-5.etch.0_arm.deb

来源: www.wireshark.org

链接:http://www.wireshark.org/docs/relnotes/wireshark-0.99.6.html

来源: www.wireshark.org

链接:http://www.wireshark.org/security/wnpa-sec-2007-02.html

来源: issues.rpath.com

链接:https://issues.rpath.com/browse/RPL-1498

来源: XF

名称: wireshark-iseries-dos(35205)

链接:http://xforce.iss.net/xforce/xfdb/35205

来源: SECTRACK

名称: 1018315

链接:http://www.securitytracker.com/id?1018315

来源: BID

名称: 24662

链接:http://www.securityfocus.com/bid/24662

来源: REDHAT

名称: RHSA-2008:0059

链接:http://www.redhat.com/support/errata/RHSA-2008-0059.html

来源: REDHAT

名称: RHSA-2007:0710

链接:http://www.redhat.com/support/errata/RHSA-2007-0710.html

来源: REDHAT

名称: RHSA-2007:0709

链接:http://www.redhat.com/support/errata/RHSA-2007-0709.html

来源: SUSE

名称: SUSE-SR:2007:015

链接:http://www.novell.com/linux/security/advisories/2007_15_sr.html

来源: MANDRIVA

名称: MDKSA-2007:145

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2007:145

来源: VUPEN

名称: ADV-2007-2353

链接:http://www.frsirt.com/english/advisories/2007/2353

来源: DEBIAN

名称: DSA-1322

链接:http://www.debian.org/security/2007/dsa-1322

来源: GENTOO

名称: GLSA-200708-12

链接:http://security.gentoo.org/glsa/glsa-200708-12.xml

来源: SECUNIA

名称: 28583

链接:http://secunia.com/advisories/28583

来源: SECUNIA

名称: 26499

链接:http://secunia.com/advisories/26499

来源: SECUNIA

名称: 26004

链接:http://secunia.com/advisories/26004

来源: SECUNIA

名称: 25987

链接:http://secunia.com/advisories/25987

来源: SECUNIA

名称: 25877

链接:http://secunia.com/advisories/25877

来源: SECUNIA

名称: 25833

链接:http://secunia.com/advisories/25833