FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

wireshark -- multiple vulnerabilities

Affected packages
0.8.16 <= ethereal < 0.99.7
0.8.16 <= ethereal-lite < 0.99.7
0.8.16 <= tethereal < 0.99.7
0.8.16 <= tethereal-lite < 0.99.7
0.8.16 <= wireshark < 0.99.7
0.8.16 <= wireshark-lite < 0.99.7

Details

VuXML ID 8a835235-ae84-11dc-a5f9-001a4d49522b
Discovery 2007-12-19
Entry 2007-12-19
Modified 2007-12-22

The Wireshark team reports of multiple vulnerabilities:

Impact

It may be possible to make Wireshark or Ethereal crash or use up available memory by injecting a purposefully malformed packet onto the wire or by convincing someone to read a malformed packet trace file.

References

CVE Name CVE-2007-6112
CVE Name CVE-2007-6113
CVE Name CVE-2007-6114
CVE Name CVE-2007-6115
CVE Name CVE-2007-6117
CVE Name CVE-2007-6118
CVE Name CVE-2007-6120
CVE Name CVE-2007-6121
CVE Name CVE-2007-6438
CVE Name CVE-2007-6439
CVE Name CVE-2007-6441
CVE Name CVE-2007-6450
CVE Name CVE-2007-6451
URL http://www.wireshark.org/security/wnpa-sec-2007-03.html