Lucene search
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-3585.NASLHistoryMay 23, 2016 - 12:00 a.m.
Debian DSA-3585-1 : wireshark - security update
2016-05-2300:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
0.004 Low
EPSS
Percentile
72.5%
Multiple vulnerabilities were discovered in the dissectors/parsers for PKTC, IAX2, GSM CBCH and NCP which could result in denial of service.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DSA-3585. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(91288);
script_version("2.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2016-4006", "CVE-2016-4079", "CVE-2016-4080", "CVE-2016-4081", "CVE-2016-4082", "CVE-2016-4085");
script_xref(name:"DSA", value:"3585");
script_name(english:"Debian DSA-3585-1 : wireshark - security update");
script_summary(english:"Checks dpkg output for the updated package");
script_set_attribute(
attribute:"synopsis",
value:"The remote Debian host is missing a security-related update."
);
script_set_attribute(
attribute:"description",
value:
"Multiple vulnerabilities were discovered in the dissectors/parsers for
PKTC, IAX2, GSM CBCH and NCP which could result in denial of service."
);
script_set_attribute(
attribute:"see_also",
value:"https://packages.debian.org/source/jessie/wireshark"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.debian.org/security/2016/dsa-3585"
);
script_set_attribute(
attribute:"solution",
value:
"Upgrade the wireshark packages.
For the stable distribution (jessie), these problems have been fixed
in version 1.12.1+g01b65bf-4+deb8u6."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:8.0");
script_set_attribute(attribute:"patch_publication_date", value:"2016/05/22");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/05/23");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Debian Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"8.0", prefix:"libwireshark-data", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"libwireshark-dev", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"libwireshark5", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"libwiretap-dev", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"libwiretap4", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"libwsutil-dev", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"libwsutil4", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"tshark", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"wireshark", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"wireshark-common", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"wireshark-dbg", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"wireshark-dev", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"wireshark-doc", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (deb_check(release:"8.0", prefix:"wireshark-qt", reference:"1.12.1+g01b65bf-4+deb8u6")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | wireshark | p-cpe:/a:debian:debian_linux:wireshark |
| debian | debian_linux | 8.0 | cpe:/o:debian:debian_linux:8.0 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4006
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4079
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4080
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4081
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4082
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4085
packages.debian.org/source/jessie/wireshark
www.debian.org/security/2016/dsa-3585
Related
debian
debian
[SECURITY] [DSA 3585-1] wireshark security update
2016-05-22 21:29:37
[SECURITY] [DLA 497-1] wireshark security update
2016-05-31 10:22:31
openvas
openvas
Debian Security Advisory DSA 3585-1 (wireshark - security update)
2016-05-22 00:00:00
Debian: Security Advisory (DSA-3585-1)
2016-05-21 00:00:00
nessus
nessus
Wireshark 1.12.x < 1.12.11 Multiple DoS
2016-04-29 00:00:00
Wireshark 1.12.x < 1.12.11 Multiple DoS (Mac OS X)
2016-04-29 00:00:00
kaspersky
kaspersky
KLA10796 Multiple vulnerabilities in Wireshark
2016-04-25 00:00:00
freebsd
freebsd
wireshark -- multiple vulnerabilities
2016-04-22 00:00:00
mageia
mageia
Updated wireshark packages fix security vulnerabilities
2016-04-26 21:02:43
nvd
nvd
debiancve
debiancve
cve
cve
prion
prion
Stack overflow
2016-04-25 10:59:00
Out-of-bounds
2016-04-25 10:59:00
Design/Logic Flaw
2016-04-25 10:59:00
ubuntucve
ubuntucve
cvelist
cvelist
f5
f5
SOL01837042 - Multiple Wireshark (tshark) vulnerabilities
2016-06-24 00:00:00
K01837042 : Multiple Wireshark (tshark) vulnerabilities
2016-06-24 00:00:00
Multiple Wireshark (tshark) vulnerabilities
2016-06-25 00:41:00
osv
osv
wireshark - security update
2016-05-31 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
0.004 Low
EPSS
Percentile
72.5%
Related for DEBIAN_DSA-3585.NASL