Wireshark PPP and NFS Dissector Denial of Service Vulnerabilities

Secunia ID	SA49971
CVE-ID	CVE-2012-4048, CVE-2012-4049
Release Date	24 Jul 2012
Criticality	Moderately Critical
Solution Status	Vendor Patch
Software	Wireshark 1.x
Where	From remote
Impact	DoS (Denial of Service) This includes vulnerabilities ranging from excessive resource consumption (e.g. causing a system to use a lot of memory) to crashing an application or an entire system.
Description	Two vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service). 1) An error within the PPP dissector can be exploited to cause a crash via a specially crafted packet. 2) An error within the NFS dissector can be exploited to consume CPU resources and cause a crash via a specially crafted packet. The vulnerabilities are reported in versions prior to 1.8.1, 1.6.9, and 1.4.14.
Solution	Update to version 1.8.1, 1.6.9, or 1.4.14.
Reported by	1) Bjørn Mork in a Debian bug. 2) Reported by the vendor.
Original Advisory	Wireshark: http://www.wireshark.org/security/wnpa-sec-2012-11.html http://www.wireshark.org/security/wnpa-sec-2012-12.html Bjørn Mork: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680056

© 1997-2013 Kaspersky Lab ZAO. All Rights Reserved.
Industry-leading Antivirus Software.
Registered trademarks and service marks are the property of their respective owners.
The authors' opinions do not necessarily reflect the official positions of Kaspersky Lab.