Vulnerabilities > CVE-2018-19627 - Out-of-bounds Read vulnerability in multiple products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

wireshark

debian

CWE-125

nessus

exploit available

NVD

Published: 2018-11-29

Updated: 2023-11-07

Summary

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.

Vulnerable Configurations

Part	Description	Count
Application	Wireshark Wireshark Wireshark 2.6.0 Wireshark Wireshark 2.6.1 Wireshark Wireshark 2.6.2 Wireshark Wireshark 2.6.3 Wireshark Wireshark 2.6.4 Wireshark Wireshark 2.4.0 Wireshark Wireshark 2.4.1 Wireshark Wireshark 2.4.2 Wireshark Wireshark 2.4.3 Wireshark Wireshark 2.4.4 Wireshark Wireshark 2.4.5 Wireshark Wireshark 2.4.6 Wireshark Wireshark 2.4.7 Wireshark Wireshark 2.4.8 Wireshark Wireshark 2.4.9 Wireshark Wireshark 2.4.10	16
OS	Debian Debian Debian Linux 9.0	1

Common Weakness Enumeration (CWE)

CWE-125 - Out-of-bounds Read

Common Attack Pattern Enumeration and Classification (CAPEC)

Overread Buffers
An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.

Exploit-Db

file	exploits/multiple/dos/45951.txt
id	EDB-ID:45951
last seen	2018-12-04
modified	2018-12-04
platform	multiple
port
published	2018-12-04
reporter	Exploit-DB
source	https://www.exploit-db.com/download/45951
title	Wireshark - 'find_signature' Heap Out-of-Bounds Read
type	dos

Nessus

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2018-4295-1.NASL
description	This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 (bsc#1117740). Security issues fixed : CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51) CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52) CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54) CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56) Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	120194
published	2019-01-02
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/120194
title	SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2018:4295-1)
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from SUSE update advisory SUSE-SU-2018:4295-1. # The text itself is copyright (C) SUSE. # include("compat.inc"); if (description) { script_id(120194); script_version("1.4"); script_cvs_date("Date: 2019/09/10 13:51:50"); script_cve_id("CVE-2018-19622", "CVE-2018-19623", "CVE-2018-19624", "CVE-2018-19625", "CVE-2018-19626", "CVE-2018-19627"); script_name(english:"SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2018:4295-1)"); script_summary(english:"Checks rpm output for the updated packages."); script_set_attribute( attribute:"synopsis", value:"The remote SUSE host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 (bsc#1117740). Security issues fixed : CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51) CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52) CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54) CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56) Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1117740" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-19622/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-19623/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-19624/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-19625/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-19626/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-19627/" ); # https://www.suse.com/support/update/announcement/2018/suse-su-20184295-1/ script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?6c16e3d0" ); script_set_attribute( attribute:"see_also", value:"https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html" ); script_set_attribute( attribute:"solution", value: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or 'zypper patch'. Alternatively you can run the command listed for your product : SUSE Linux Enterprise Module for Desktop Applications 15:zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-2018-3066=1 SUSE Linux Enterprise Module for Basesystem 15:zypper in -t patch SUSE-SLE-Module-Basesystem-15-2018-3066=1" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwireshark9"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwireshark9-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwiretap7"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwiretap7-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwscodecs1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwscodecs1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwsutil8"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwsutil8-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:wireshark"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:wireshark-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:wireshark-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:wireshark-devel"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:wireshark-ui-qt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:wireshark-ui-qt-debuginfo"); script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15"); script_set_attribute(attribute:"vuln_publication_date", value:"2018/11/29"); script_set_attribute(attribute:"patch_publication_date", value:"2018/12/28"); script_set_attribute(attribute:"plugin_publication_date", value:"2019/01/02"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"SuSE Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/SuSE/release"); if (isnull(release) \|\| release !~ "^(SLED\|SLES)") audit(AUDIT_OS_NOT, "SUSE"); os_ver = pregmatch(pattern: "^(SLE(S\|D)\d+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE"); os_ver = os_ver[1]; if (! preg(pattern:"^(SLED15\|SLES15)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED15 / SLES15", "SUSE " + os_ver); if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu); sp = get_kb_item("Host/SuSE/patchlevel"); if (isnull(sp)) sp = "0"; if (os_ver == "SLES15" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLES15 SP0", os_ver + " SP" + sp); if (os_ver == "SLED15" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLED15 SP0", os_ver + " SP" + sp); flag = 0; if (rpm_check(release:"SLES15", sp:"0", reference:"wireshark-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"wireshark-debugsource-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"wireshark-devel-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"wireshark-ui-qt-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"wireshark-ui-qt-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"libwireshark9-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"libwireshark9-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"libwiretap7-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"libwiretap7-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"libwscodecs1-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"libwscodecs1-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"libwsutil8-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"libwsutil8-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"wireshark-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"wireshark-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLES15", sp:"0", reference:"wireshark-debugsource-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"wireshark-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"wireshark-debugsource-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"wireshark-devel-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"wireshark-ui-qt-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"wireshark-ui-qt-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"libwireshark9-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"libwireshark9-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"libwiretap7-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"libwiretap7-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"libwscodecs1-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"libwscodecs1-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"libwsutil8-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"libwsutil8-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"wireshark-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"wireshark-debuginfo-2.4.11-3.15.1")) flag++; if (rpm_check(release:"SLED15", sp:"0", reference:"wireshark-debugsource-2.4.11-3.15.1")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "wireshark"); }

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DSA-4359.NASL
description	Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer, which could result in denial of service or the execution of arbitrary code.
last seen	2020-06-01
modified	2020-06-02
plugin id	119892
published	2018-12-28
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119892
title	Debian DSA-4359-1 : wireshark - security update
code	# # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Debian Security Advisory DSA-4359. The text # itself is copyright (C) Software in the Public Interest, Inc. # include("compat.inc"); if (description) { script_id(119892); script_version("1.2"); script_cvs_date("Date: 2019/04/05 23:25:05"); script_cve_id("CVE-2018-12086", "CVE-2018-18225", "CVE-2018-18226", "CVE-2018-18227", "CVE-2018-19622", "CVE-2018-19623", "CVE-2018-19624", "CVE-2018-19625", "CVE-2018-19626", "CVE-2018-19627", "CVE-2018-19628"); script_xref(name:"DSA", value:"4359"); script_name(english:"Debian DSA-4359-1 : wireshark - security update"); script_summary(english:"Checks dpkg output for the updated package"); script_set_attribute( attribute:"synopsis", value:"The remote Debian host is missing a security-related update." ); script_set_attribute( attribute:"description", value: "Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer, which could result in denial of service or the execution of arbitrary code." ); script_set_attribute( attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/wireshark" ); script_set_attribute( attribute:"see_also", value:"https://packages.debian.org/source/stretch/wireshark" ); script_set_attribute( attribute:"see_also", value:"https://www.debian.org/security/2018/dsa-4359" ); script_set_attribute( attribute:"solution", value: "Upgrade the wireshark packages. For the stable distribution (stretch), these problems have been fixed in version 2.6.5-1~deb9u1." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:wireshark"); script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0"); script_set_attribute(attribute:"patch_publication_date", value:"2018/12/27"); script_set_attribute(attribute:"plugin_publication_date", value:"2018/12/28"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Debian Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l"); exit(0); } include("audit.inc"); include("debian_package.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian"); if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING); flag = 0; if (deb_check(release:"9.0", prefix:"libwireshark-data", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"libwireshark-dev", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"libwireshark8", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"libwiretap-dev", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"libwiretap6", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"libwscodecs1", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"libwsutil-dev", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"libwsutil7", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"tshark", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"wireshark", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"wireshark-common", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"wireshark-dev", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"wireshark-doc", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"wireshark-gtk", reference:"2.6.5-1~deb9u1")) flag++; if (deb_check(release:"9.0", prefix:"wireshark-qt", reference:"2.6.5-1~deb9u1")) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get()); else security_hole(0); exit(0); } else audit(AUDIT_HOST_NOT, "affected");

NASL family	MacOS X Local Security Checks
NASL id	MACOSX_WIRESHARK_2_6_5.NASL
description	The version of Wireshark installed on the remote MacOS/MacOSX host is 2.6.x prior to 2.6.5. It is, therefore, affected by multiple vulnerabilities.
last seen	2020-06-01
modified	2020-06-02
plugin id	119418
published	2018-12-05
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119418
title	Wireshark 2.6.x < 2.6.5 Multiple Vulnerabilities (MacOS)
code	# # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(119418); script_version("1.6"); script_cvs_date("Date: 2019/11/01"); script_cve_id( "CVE-2018-19622", "CVE-2018-19623", "CVE-2018-19624", "CVE-2018-19625", "CVE-2018-19626", "CVE-2018-19627", "CVE-2018-19628" ); script_bugtraq_id(106051); script_name(english:"Wireshark 2.6.x < 2.6.5 Multiple Vulnerabilities (MacOS)"); script_summary(english:"Checks the version of Wireshark."); script_set_attribute(attribute:"synopsis", value: "An application installed on the remote MacOS / MacOSX host is affected by multiple vulnerabilities."); script_set_attribute(attribute:"description", value: "The version of Wireshark installed on the remote MacOS/MacOSX host is 2.6.x prior to 2.6.5. It is, therefore, affected by multiple vulnerabilities."); script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/docs/relnotes/wireshark-2.6.5.html"); script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2018-51.html"); script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2018-52.html"); script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2018-53.html"); script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2018-54.html"); script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2018-55.html"); script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2018-56.html"); script_set_attribute(attribute:"see_also", value:"https://www.wireshark.org/security/wnpa-sec-2018-57.html"); script_set_attribute(attribute:"solution", value: "Upgrade to Wireshark version 2.6.5 or later."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-19628"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_set_attribute(attribute:"vuln_publication_date", value:"2018/11/27"); script_set_attribute(attribute:"patch_publication_date", value:"2018/11/27"); script_set_attribute(attribute:"plugin_publication_date", value:"2018/12/05"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:wireshark:wireshark"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"MacOS X Local Security Checks"); script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("macosx_wireshark_installed.nbin"); script_require_keys("installed_sw/Wireshark", "Host/MacOSX/Version", "Host/local_checks_enabled"); exit(0); } include("vcf.inc"); get_kb_item_or_exit("Host/MacOSX/Version"); app_info = vcf::get_app_info(app:"Wireshark"); constraints = [ { "min_version" : "2.6.0", "fixed_version" : "2.6.5" } ]; vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2019-1045.NASL
description	This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 (bsc#1117740). Security issues fixed : - CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51) - CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52) - CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) - CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54) - CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) - CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56) Further bug fixes and updated protocol support as listed in : - https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html This update was imported from the SUSE:SLE-15:Update update project.
last seen	2020-06-01
modified	2020-06-02
plugin id	123166
published	2019-03-27
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/123166
title	openSUSE Security Update : wireshark (openSUSE-2019-1045)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2018-1B6CB1DF72.NASL
description	New version 2.6.5, contains fixes for CVE-2018-19622, CVE-2018-19623, CVE-2018-19624, CVE-2018-19625, CVE-2018-19626, CVE-2018-19627, CVE-2018-19628 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2019-01-03
plugin id	120265
published	2019-01-03
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/120265
title	Fedora 28 : 1:wireshark (2018-1b6cb1df72)

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2020-0693-1.NASL
description	This update for wireshark and libmaxminddb fixes the following issues : Update wireshark to new major version 3.2.2 and introduce libmaxminddb for GeoIP support (bsc#1156288). New features include : Added support for 111 new protocols, including WireGuard, LoRaWAN, TPM 2.0, 802.11ax and QUIC Improved support for existing protocols, like HTTP/2 Improved analytics and usability functionalities Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-03-19
modified	2020-03-16
plugin id	134625
published	2020-03-16
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/134625
title	SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2020:0693-1)

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2018-1620.NASL
description	This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 (bsc#1117740). Security issues fixed : - CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51) - CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52) - CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) - CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54) - CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) - CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56) Further bug fixes and updated protocol support as listed in : - https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html This update was imported from the SUSE:SLE-15:Update update project.
last seen	2020-06-05
modified	2018-12-31
plugin id	119950
published	2018-12-31
reporter	This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119950
title	openSUSE Security Update : wireshark (openSUSE-2018-1620)

NASL family	Windows
NASL id	WIRESHARK_2_4_11.NASL
description	The version of Wireshark installed on the remote Windows host is 2.4.x prior to 2.4.11. It is, therefore, affected by multiple vulnerabilities.
last seen	2020-06-01
modified	2020-06-02
plugin id	119419
published	2018-12-05
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119419
title	Wireshark 2.4.x < 2.4.11 Multiple Vulnerabilities

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2018-4298-1.NASL
description	This update for wireshark fixes the following issues : Update to Wireshark 2.4.11 (bsc#1117740). Security issues fixed : CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51) CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52) CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54) CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56) Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	119956
published	2018-12-31
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119956
title	SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:4298-1)

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2020-362.NASL
description	This update for wireshark and libmaxminddb fixes the following issues : Update wireshark to new major version 3.2.2 and introduce libmaxminddb for GeoIP support (bsc#1156288). New features include : - Added support for 111 new protocols, including WireGuard, LoRaWAN, TPM 2.0, 802.11ax and QUIC - Improved support for existing protocols, like HTTP/2 - Improved analytics and usability functionalities This update was imported from the SUSE:SLE-15:Update update project.
last seen	2020-03-26
modified	2020-03-20
plugin id	134755
published	2020-03-20
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/134755
title	openSUSE Security Update : wireshark (openSUSE-2020-362)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2018-CB410A3812.NASL
description	New version 2.6.5, contains fixes for CVE-2018-19622, CVE-2018-19623, CVE-2018-19624, CVE-2018-19625, CVE-2018-19626, CVE-2018-19627, CVE-2018-19628 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-05
modified	2019-01-03
plugin id	120792
published	2019-01-03
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/120792
title	Fedora 29 : 1:wireshark (2018-cb410a3812)

NASL family	Windows
NASL id	WIRESHARK_2_6_5.NASL
description	The version of Wireshark installed on the remote Windows host is 2.6.x prior to 2.6.5. It is, therefore, affected by multiple vulnerabilities.
last seen	2020-06-01
modified	2020-06-02
plugin id	119420
published	2018-12-05
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119420
title	Wireshark 2.6.x < 2.6.5 Multiple Vulnerabilities

NASL family	MacOS X Local Security Checks
NASL id	MACOSX_WIRESHARK_2_4_11.NASL
description	The version of Wireshark installed on the remote MacOS/MacOSX host is 2.4.x prior to 2.4.11. It is, therefore, affected by multiple vulnerabilities.
last seen	2020-06-01
modified	2020-06-02
plugin id	119417
published	2018-12-05
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119417
title	Wireshark 2.4.x < 2.4.11 Multiple Vulnerabilities (MacOS)

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit-Db

Nessus

References