FrSIRT - Mandriva Security Update Fixes Wireshark Multiple Vulnerabilities / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Mandriva Security Update Fixes Wireshark Multiple Vulnerabilities

Title : Mandriva Security Update Fixes Wireshark Multiple Vulnerabilities
Advisory ID : FrSIRT/ADV-2008-0014
CVE ID : CVE-2007-6111 - CVE-2007-6112 - CVE-2007-6113 - CVE-2007-6114 - CVE-2007-6115 - CVE-2007-6116 - CVE-2007-6117 - CVE-2007-6118 - CVE-2007-6119 - CVE-2007-6120 - CVE-2007-6121 - CVE-2007-6438 - CVE-2007-6439 - CVE-2007-6441 - CVE-2007-6450 - CVE-2007-6451
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2008-01-03

Advisory Details

Description

Affected Products

Solution

References

Technical Description

Multiple vulnerabilities have been identified in Mandriva, which could be exploited by remote attackers to cause a denial of service or potentially compromise a vulnerable system [...]

Solution

Upgrade the affected packages :

Mandriva Linux 2007.0:
5c91bd119cfc3b1c1ee55b6bc2011e4a 2007.0/i586/libwireshark0-0.99.7-0.2mdv2007.0.i586.rpm
78c42809009ff071c1df6b755303f15b 2007.0/i586/tshark-0.99.7-0.2mdv2007.0.i586.rpm
49b10ec48fd94f2f25e017454a72bf19 2007.0/i586/wireshark-0.99.7-0.2mdv2007.0.i586.rpm
c5c8c034009e625164944bed14446404 2007.0/i586/wireshark-tools-0.99.7-0.2mdv2007.0.i586.rpm
77848da4b077e273c2b6d63cd7b7e9eb 2007.0/SRPMS/wireshark-0.99.7-0.2mdv2007.0.src.rpm

Mandriva Linux 2007.0/X86_64:
bd4b1becee027d7670316fc861420a4f 2007.0/x86_64/lib64wireshark0-0.99.7-0.2mdv2007.0.x86_64.rpm
3843ed5c6de451e48288cebee268a13c 2007.0/x86_64/tshark-0.99.7-0.2mdv2007.0.x86_64.rpm
2be07bfb8592520cb656e9fdbfb98022 2007.0/x86_64/wireshark-0.99.7-0.2mdv2007.0.x86_64.rpm
90e146c1da8a29a5a076cc6c9caed066 2007.0/x86_64/wireshark-tools-0.99.7-0.2mdv2007.0.x86_64.rpm
77848da4b077e273c2b6d63cd7b7e9eb 2007.0/SRPMS/wireshark-0.99.7-0.2mdv2007.0.src.rpm

Mandriva Linux 2007.1:
ade45a75aea57acf6530f4f41f825cc9 2007.1/i586/libwireshark0-0.99.7-0.2mdv2007.1.i586.rpm
b5c8c986615e448c7dacee90c7e29fa2 2007.1/i586/tshark-0.99.7-0.2mdv2007.1.i586.rpm
abe2a75fdf8e04e4a92a50ce1aa9a1d7 2007.1/i586/wireshark-0.99.7-0.2mdv2007.1.i586.rpm
a1fb6cf26e8e3925759cd53607b7d171 2007.1/i586/wireshark-tools-0.99.7-0.2mdv2007.1.i586.rpm
cabd10166ca29f2f4685b52dfd77b5fe 2007.1/SRPMS/wireshark-0.99.7-0.2mdv2007.1.src.rpm

Mandriva Linux 2007.1/X86_64:
963168de12981d25e5c843682f8e2341 2007.1/x86_64/lib64wireshark0-0.99.7-0.2mdv2007.1.x86_64.rpm
c979dda5e0306456a1870cab22f7dbd3 2007.1/x86_64/tshark-0.99.7-0.2mdv2007.1.x86_64.rpm
3b5228291fc25c3e2413ff50b5ae0c35 2007.1/x86_64/wireshark-0.99.7-0.2mdv2007.1.x86_64.rpm
4457e9620dd65ff45a61b822e8bd6fca 2007.1/x86_64/wireshark-tools-0.99.7-0.2mdv2007.1.x86_64.rpm
cabd10166ca29f2f4685b52dfd77b5fe 2007.1/SRPMS/wireshark-0.99.7-0.2mdv2007.1.src.rpm

Mandriva Linux 2008.0:
30c75799076e9f6cb5b1e52edf3db14a 2008.0/i586/libwireshark-devel-0.99.7-0.2mdv2008.0.i586.rpm
8f81b43b1023d159c8914e67fefa1002 2008.0/i586/libwireshark0-0.99.7-0.2mdv2008.0.i586.rpm
adbaf318e0bc5cb332e70a3fd5f04474 2008.0/i586/tshark-0.99.7-0.2mdv2008.0.i586.rpm
858cabe43af0af8a5677e011afd218c9 2008.0/i586/wireshark-0.99.7-0.2mdv2008.0.i586.rpm
c62187def12e0ead20310a7efe9505b3 2008.0/i586/wireshark-tools-0.99.7-0.2mdv2008.0.i586.rpm
3d06a9a2c6e9785d6fc2238d661a8404 2008.0/SRPMS/wireshark-0.99.7-0.2mdv2008.0.src.rpm

Mandriva Linux 2008.0/X86_64:
ed92644ee0e457b2a3ecee1d2bf4fa60 2008.0/x86_64/lib64wireshark-devel-0.99.7-0.2mdv2008.0.x86_64.rpm
9635394abf21052f7bcab4897528be76 2008.0/x86_64/lib64wireshark0-0.99.7-0.2mdv2008.0.x86_64.rpm
d121a1c7a3ef3176a64d1849670e6dee 2008.0/x86_64/tshark-0.99.7-0.2mdv2008.0.x86_64.rpm
80d1eef6d6d2cedb1afe7f0aeb5adff9 2008.0/x86_64/wireshark-0.99.7-0.2mdv2008.0.x86_64.rpm
c95a8c9b83616e90eb8a172f1d1f31f6 2008.0/x86_64/wireshark-tools-0.99.7-0.2mdv2008.0.x86_64.rpm
3d06a9a2c6e9785d6fc2238d661a8404 2008.0/SRPMS/wireshark-0.99.7-0.2mdv2008.0.src.rpm

Corporate 4.0:
f23d3320bf2e426f48dc4c4243c315b6 corporate/4.0/i586/libwireshark0-0.99.7-0.2.20060mlcs4.i586.rpm
51587e5f3bf827a97b8655b3d7633774 corporate/4.0/i586/tshark-0.99.7-0.2.20060mlcs4.i586.rpm
a5ad1f60eb99f7f57b9241adb7f6b537 corporate/4.0/i586/wireshark-0.99.7-0.2.20060mlcs4.i586.rpm
72af45f42b528185526016f498fa5908 corporate/4.0/i586/wireshark-tools-0.99.7-0.2.20060mlcs4.i586.rpm
0ebc19bec6bc7e76f644f122e956c416 corporate/4.0/SRPMS/wireshark-0.99.7-0.2.20060mlcs4.src.rpm

Corporate 4.0/X86_64:
3bd532fbfacf8e910efaf47aae679200 corporate/4.0/x86_64/lib64wireshark0-0.99.7-0.2.20060mlcs4.x86_64.rpm
7e25238cbc07b651e37e65b826d87dac corporate/4.0/x86_64/tshark-0.99.7-0.2.20060mlcs4.x86_64.rpm
b14aaefe6cedbf388fe202722a6e6596 corporate/4.0/x86_64/wireshark-0.99.7-0.2.20060mlcs4.x86_64.rpm
4959cbe32a8854f858409e2e98144375 corporate/4.0/x86_64/wireshark-tools-0.99.7-0.2.20060mlcs4.x86_64.rpm
0ebc19bec6bc7e76f644f122e956c416 corporate/4.0/SRPMS/wireshark-0.99.7-0.2.20060mlcs4.src.rpm

ChangeLog

2008-01-03 : Initial release
2008-01-07 : Updated Solution

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Microsoft Visual Studio "Msmask32" Code Execution Vulnerability
	Microsoft PowerPoint Command Execution Vulnerabilities (MS08-051)
	Microsoft Windows Messenger Data Disclosure (MS08-050)
	Microsoft Windows Event System Code Execution (MS08-049)
	Microsoft Outlook and Mail Security Bypass Vulnerability (MS08-048)
	Microsoft Windows IPsec Policy Data Disclosure Vulnerability (MS08-047)
	Microsoft Windows MSCMS Code Execution Vulnerability (MS08-046)

	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability
	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability
	Cisco UCM Denial of Service and Authentication Bypass Vulnerabilities
	Cisco Intrusion Prevention System Jumbo Frame Vulnerability
	Cisco VPN Client Deterministic Network Enhancer Privilege Escalation

	Apple Mac OS X Code Execution and Security Bypass Vulnerabilities
	Apple iPhone and iPod touch Multiple Code Execution Vulnerabilities
	Apple Xcode Code Execution and Information Disclosure Vulnerabilities
	Apple TV Data Processing Remote Code Execution Vulnerabilities
	Apple Mac OS X Command Execution and Security Bypass Issues
	Apple Safari for Mac OS X Remote Code Execution Vulnerability
	Apple Mac OS X ARDAgent Local Privilege Escalation Vulnerability