jetlib.sec » Tags » dissector

Feeds

268064 items (21 unread) in 27 feeds

• 0day.today (was: 1337day, Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines (20 unread)
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files (1 unread)
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

49 items tagged "dissector"

Related tags: lwres [+], multiple buffer overflow [+], mandriva [+], buffer overflow vulnerabilities [+], based buffer overflow [+], system memory [+], security [+], loop [+], linux security [+], ldss [+], docsis [+], buffer overflow vulnerability [+], advisory updates [+], wireshark [+], vulnerabilities [+], version [+], request function [+], packet [+], null pointer [+], mac [+], integer data type [+], denial [+], buffer overflow [+], smb [+], remote buffer overflow [+], multiple [+], mdvsa [+], dect [+], csn [+], call [+], buffer overflows [+], buffer [+], sat [+], quot [+], opensafety [+], nbsp [+], midori [+], linux [+], lan [+], kernel 2 [+], infiniband [+], drda [+], distros [+], diameter [+], apr [+], Topics [+], Specialist [+], denial of service [+], service vulnerability [+], mandriva linux [+]

• September 04, 2012
• 0:00

  Vuln: Wireshark DRDA Dissector 'dissect_drda()' Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark DRDA Dissector 'dissect_drda()' Denial of Service Vulnerability

  Tags:  wireshark drda dissector service-vulnerability denial-of-service  

• August 16, 2012
• 20:05

  Mandriva Linux Security Advisory 2012-135

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2012-135 - The DCP ETSI dissector could trigger a zero division. The MongoDB dissector could go into a large loop. The XTP dissector could go into an infinite loop. The AFP dissector could go into a large loop. The RTPS2 dissector could overflow a buffer. The CIP dissector could exhaust system memory. The STUN dissector could crash. The EtherCAT Mailbox dissector could abort. The CTDB dissector could go into a large loop. This advisory provides the latest version of Wireshark which is not vulnerable to these issues.

  Tags:  mandriva dissector loop mandriva-linux linux-security system-memory  

• 20:05

  Mandriva Linux Security Advisory 2012-135

   » ‎ Packet Storm Security Misc. Files
  Mandriva Linux Security Advisory 2012-135 - The DCP ETSI dissector could trigger a zero division. The MongoDB dissector could go into a large loop. The XTP dissector could go into an infinite loop. The AFP dissector could go into a large loop. The RTPS2 dissector could overflow a buffer. The CIP dissector could exhaust system memory. The STUN dissector could crash. The EtherCAT Mailbox dissector could abort. The CTDB dissector could go into a large loop. This advisory provides the latest version of Wireshark which is not vulnerable to these issues.

  Tags:  mandriva dissector loop mandriva-linux linux-security system-memory  

• 19:59

  Mandriva Linux Security Advisory 2012-134

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2012-134 - The DCP ETSI dissector could trigger a zero division. The MongoDB dissector could go into a large loop. The XTP dissector could go into an infinite loop. The AFP dissector could go into a large loop. The RTPS2 dissector could overflow a buffer. The GSM RLC MAC dissector could overflow a buffer. The CIP dissector could exhaust system memory. The STUN dissector could crash. The EtherCAT Mailbox dissector could abort. The CTDB dissector could go into a large loop. This advisory provides the latest version of Wireshark which is not vulnerable to these issues.

  Tags:  mandriva dissector loop mac mandriva-linux linux-security system-memory  

• 19:59

  Mandriva Linux Security Advisory 2012-134

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2012-134 - The DCP ETSI dissector could trigger a zero division. The MongoDB dissector could go into a large loop. The XTP dissector could go into an infinite loop. The AFP dissector could go into a large loop. The RTPS2 dissector could overflow a buffer. The GSM RLC MAC dissector could overflow a buffer. The CIP dissector could exhaust system memory. The STUN dissector could crash. The EtherCAT Mailbox dissector could abort. The CTDB dissector could go into a large loop. This advisory provides the latest version of Wireshark which is not vulnerable to these issues.

  Tags:  mandriva dissector loop mac mandriva-linux linux-security system-memory  

• 19:59

  Mandriva Linux Security Advisory 2012-134

   » ‎ Packet Storm Security Misc. Files
  Mandriva Linux Security Advisory 2012-134 - The DCP ETSI dissector could trigger a zero division. The MongoDB dissector could go into a large loop. The XTP dissector could go into an infinite loop. The AFP dissector could go into a large loop. The RTPS2 dissector could overflow a buffer. The GSM RLC MAC dissector could overflow a buffer. The CIP dissector could exhaust system memory. The STUN dissector could crash. The EtherCAT Mailbox dissector could abort. The CTDB dissector could go into a large loop. This advisory provides the latest version of Wireshark which is not vulnerable to these issues.

  Tags:  mandriva dissector loop mac mandriva-linux linux-security system-memory  

• July 11, 2012
• 0:00

  Vuln: Wireshark Multiple Dissector Denial of Service Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Multiple Dissector Denial of Service Vulnerabilities

  Tags:  multiple wireshark dissector denial-of-service  

• May 24, 2012
• 8:12

  Wireshark Dissector Denial Of Service

   » ‎ Packet Storm Security Exploits
  Wireshark versions 1.6.0 through 1.6.7 and versions 1.4.0 through 1.4.12 suffer from multiple dissector related denial of service vulnerabilities.

  Tags:  wireshark denial dissector denial-of-service vulnerabilities  

• 8:12

  Wireshark Dissector Denial Of Service

   » ‎ Packet Storm Security Recent Files
  Wireshark versions 1.6.0 through 1.6.7 and versions 1.4.0 through 1.4.12 suffer from multiple dissector related denial of service vulnerabilities.

  Tags:  wireshark denial dissector denial-of-service vulnerabilities  

• 8:12

  Wireshark Dissector Denial Of Service

   » ‎ Packet Storm Security Misc. Files
  Wireshark versions 1.6.0 through 1.6.7 and versions 1.4.0 through 1.4.12 suffer from multiple dissector related denial of service vulnerabilities.

  Tags:  wireshark denial dissector denial-of-service vulnerabilities  

• May 23, 2012
• 0:00

  Vuln: Wireshark DIAMETER Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark DIAMETER Dissector Denial of Service Vulnerability

  Tags:  wireshark dissector diameter service-vulnerability denial-of-service  

• 0:00

  Vuln: Wireshark Multiple Dissector Denial of Service Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Multiple Dissector Denial of Service Vulnerabilities

  Tags:  multiple wireshark dissector denial-of-service  

• April 19, 2012
• 5:33

  Wireshark call_dissector() Denial Of Service

   » ‎ Packet Storm Security Exploits
  Wireshark suffers from a call_dissector() NULL pointer dereference denial of service vulnerability. Proof of concept pcap included.

  Tags:  dissector wireshark call service-vulnerability null-pointer denial-of-service  

• 0:00

  Vuln: Wireshark 'call_dissector()' NULL Pointer Dereference Denial Of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark 'call_dissector()' NULL Pointer Dereference Denial Of Service Vulnerability

  Tags:  dissector wireshark call service-vulnerability null-pointer denial-of-service  

• March 28, 2012
• 19:43

  Mandriva Linux Security Advisory 2012-042

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2012-042 - Multiple vulnerabilities was found and corrected in Wireshark. The ANSI A dissector could dereference a NULL pointer and crash. The IEEE 802.11 dissector could go into an infinite loop. The pcap and pcap-ng file parsers could crash trying to read ERF data. The MP2T dissector could try to allocate too much memory and crash. This advisory provides the latest version of Wireshark which is not vulnerable to these issues.

  Tags:  mandriva dissector linux mandriva-linux null-pointer  

• November 22, 2011
• 16:57

  Wireshark 1.4.4 DECT Dissector Buffer Overflow

   » ‎ Packet Storm Security Recent Files
  Wireshark versions 1.4.4 and below DECT dissector remote buffer overflow exploit.

  Tags:  wireshark dissector dect remote-buffer-overflow  

• 16:57

  Wireshark 1.4.4 DECT Dissector Buffer Overflow

   » ‎ Packet Storm Security Misc. Files
  Wireshark versions 1.4.4 and below DECT dissector remote buffer overflow exploit.

  Tags:  wireshark dissector dect remote-buffer-overflow  

• November 15, 2011
• 0:00

  Vuln: Wireshark Infiniband Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Infiniband Dissector Denial of Service Vulnerability

  Tags:  wireshark infiniband dissector service-vulnerability denial-of-service  

• 0:00

  Vuln: Wireshark CSN.1 Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark CSN.1 Dissector Denial of Service Vulnerability

  Tags:  wireshark csn dissector service-vulnerability denial-of-service  

• September 28, 2011
• 0:00

  Vuln: Wireshark OpenSafety Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark OpenSafety Dissector Denial of Service Vulnerability

  Tags:  wireshark dissector opensafety service-vulnerability denial-of-service  

• 0:00

  Vuln: Wireshark CSN.1 Dissector Remote Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark CSN.1 Dissector Remote Denial of Service Vulnerability

  Tags:  wireshark csn dissector service-vulnerability denial-of-service  

• May 12, 2011
• 10:22

  Mandriva Linux Security Advisory 2011-083

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2011-083 - This advisory updates wireshark to the latest version (1.2.16), fixing several security issues. The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted.pcap file. Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted.pcap file. The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service via a crafted.pcap file. The updated packages have been upgraded to the latest 1.2.x version which is not vulnerable to these issues.

  Tags:  dissector wireshark security integer-data-type based-buffer-overflow mandriva-linux  

• 10:22

  Mandriva Linux Security Advisory 2011-083

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2011-083 - This advisory updates wireshark to the latest version (1.2.16), fixing several security issues. The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted.pcap file. Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted.pcap file. The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service via a crafted.pcap file. The updated packages have been upgraded to the latest 1.2.x version which is not vulnerable to these issues.

  Tags:  dissector wireshark security integer-data-type based-buffer-overflow mandriva-linux  

• 10:22

  Mandriva Linux Security Advisory 2011-083

   » ‎ Packet Storm Security Misc. Files
  Mandriva Linux Security Advisory 2011-083 - This advisory updates wireshark to the latest version (1.2.16), fixing several security issues. The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted.pcap file. Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted.pcap file. The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service via a crafted.pcap file. The updated packages have been upgraded to the latest 1.2.x version which is not vulnerable to these issues.

  Tags:  dissector wireshark security integer-data-type based-buffer-overflow mandriva-linux  

• April 19, 2011
• 0:00

  Vuln: Wireshark DOCSIS Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark DOCSIS Dissector Denial of Service Vulnerability

  Tags:  wireshark docsis dissector service-vulnerability denial-of-service  

• 0:00

  Vuln: Wireshark LDSS Dissector Buffer Overflow Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark LDSS Dissector Buffer Overflow Vulnerability

  Tags:  wireshark dissector ldss buffer-overflow-vulnerability  

• February 16, 2011
• 0:00

  Vuln: Wireshark LDSS Dissector Buffer Overflow Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark LDSS Dissector Buffer Overflow Vulnerability

  Tags:  wireshark dissector ldss buffer-overflow-vulnerability  

• January 25, 2011
• 0:00

  Vuln: Wireshark LDSS Dissector Buffer Overflow Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark LDSS Dissector Buffer Overflow Vulnerability

  Tags:  wireshark dissector ldss buffer-overflow-vulnerability  

• January 11, 2011
• 0:00

  Vuln: Wireshark DOCSIS Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark DOCSIS Dissector Denial of Service Vulnerability

  Tags:  wireshark docsis dissector service-vulnerability denial-of-service  

• November 30, 2010
• 0:00

  Vuln: Wireshark LDSS Dissector Buffer Overflow Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark LDSS Dissector Buffer Overflow Vulnerability

  Tags:  wireshark dissector ldss buffer-overflow-vulnerability  

• November 29, 2010
• 0:00

  Vuln: Wireshark LDSS Dissector Buffer Overflow Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark LDSS Dissector Buffer Overflow Vulnerability

  Tags:  wireshark dissector ldss buffer-overflow-vulnerability  

• September 08, 2010
• 0:00

  Vuln: Wireshark DOCSIS Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark DOCSIS Dissector Denial of Service Vulnerability

  Tags:  wireshark docsis dissector service-vulnerability denial-of-service  

• August 12, 2010
• 0:00

  Vuln: Wireshark DOCSIS Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark DOCSIS Dissector Denial of Service Vulnerability

  Tags:  wireshark docsis dissector service-vulnerability denial-of-service  

• August 06, 2010
• 10:02

  MDVSA-2010-144.txt

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2010-144 - This advisory updates wireshark to the latest version, fixing several security issues. Buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors. Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.

  Tags:  buffer wireshark security advisory-updates buffer-overflow dissector  

• 10:00

  MDVSA-2010-144.txt

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2010-144 - This advisory updates wireshark to the latest version, fixing several security issues. Buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors. Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.

  Tags:  buffer wireshark security advisory-updates buffer-overflow dissector  

• May 18, 2010
• 0:00

  Vuln: Wireshark DOCSIS Dissector Denial of Service Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  Wireshark DOCSIS Dissector Denial of Service Vulnerability

  Tags:  wireshark docsis dissector service-vulnerability denial-of-service  

• April 20, 2010
• 0:00

  Vuln: Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

  Tags:  wireshark dissector lwres multiple-buffer-overflow buffer-overflow-vulnerabilities  

• April 03, 2010
• 10:14

  ettercap receives/processes corrupt packets

   » ‎ remote-exploit & backtrack
  Hi everyone,
  
  I've been evaluating ettercap's features in my LAN and now I got a problem that I just can't solve. After 2 days trying to find out what's going on, I finally gave up. So, here I am, asking for a few clarification words. :) Maybe I've missed something. Heh.
  
  My main distro is not BT, but Debian squeeze. I would try ettercap's forum for this issue, but it seems to be "dead". As I believe it's not directly Debian related, the place containing people with enough knowledge on the subject would be here. Hope it's not a problem (and this is the right forum to do so).
  
  I'm running ettercap NG-0.7.3 in Debian squeeze, kernel 2.6.33-amd64.
  
  So, here we go: ettercap's built-in dissectors don't work at all, as it seems to receive corrupt/malformed packets from the network. SSL dissector, which uses iptables for redirection does works though. Strangely enough, if I fire wireshark and start capturing, I can see the packets correctly (and a lot of out-of-order or duplicated ACKs, which I believe is normal.. sort of). Since I used official packages from Debian repo, I tried to compile ettercap myself, with --enable-debug and see if there was any clues about what's going on in its logs. Unfortunately, no. Dissectors aren't fired, never (except for the SSL), and no relevant log entry.
  
  I booted BT4 Final to give it a try. To my surprise, it does works! ettercap sees all packets correctly, dissector works perfectly. Even dissector-dependent plugins (for URL sniffing), like remote_browser works.
  
  Tried the same ettercap parameters with 2 different wifi cards: Intel 4965AGN and a external RTL8187L. Same results, Debian = corrupt packets, BT = 100%. Here is the command line I've used in the tests:
  Code: ettercap -Tq -M arp:remote -i wlan0 /192.168.1.1/ /192.168.1.7/        (.1 = GW / .7 = Target) Here is a sample packet dump from both distros, with target visiting yahoo (trimmed the log, just the initial packets are enough, as the same behavior occurs in the other packets):
  
  Debian
  Code: Sat Apr  3 00:27:44 2010
UDP  192.168.1.7:38563 --> 192.168.1.1:53 |

.)...........ww w .yahoo. com.....


Sat Apr  3 00:27:44 2010
UDP  192.168.1.1:53 --> 192.168.1.7:38563 |

.)...........ww w .yahoo. com..................fp.wg1.b...+.......:......


Sat Apr  3 00:27:44 2010
TCP  192.168.1.7:39979 --> 200.152.168.178:80 | S




Sat Apr  3 00:27:44 2010
TCP  200.152.168.178:80 --> 192.168.1.7:39979 | SA




Sat Apr  3 00:27:44 2010
TCP  192.168.1.7:39979 --> 200.152.168.178:80 | A




Sat Apr  3 00:27:44 2010
TCP  192.168.1.7:39979 --> 200.152.168.178:80 | AP

LYwArdhObVDnZEZeRFdFiwDvwxmM_j7RiEiWs-; GZ=Z=0.
.
.pt>(function(){
var b,d,e,f;function g(a,c){if(a.removeEventListener){a.removeEventListener("load",c,false);a.removeEventListener("error",c,false)}else{a.detachEvent("onload",c);a.detachEvent("onerror",c)}}function h(a){f=(new Date).getTime();++d;a=a||window.event;var c=a.target||a.srcElement;g(c,h)}var i=document.getElementsByTagName("img");b=i.length;d=0;for(var j=0,k;j<b;++j){k=i[j];g(k,h);if(k.complete||typeof k.src!="string"||!k.src)++d;else if(k.addEventLi


Sat Apr  3 00:27:44 2010
TCP  200.152.168.178:80 --> 192.168.1.7:39979 | A BT
  Code: Sat Apr  3 00:42:50 2010
UDP  192.168.1.7:52383 --> 192.168.1.1:53 |

Q............ww w .yahoo. com.....


Sat Apr  3 00:42:50 2010
UDP  192.168.1.1:53 --> 192.168.1.7:52383 |

Q............ww w .yahoo. com..................fp.wg1.b...+......."......


Sat Apr  3 00:42:50 2010
TCP  192.168.1.7:40942 --> 200.152.168.178:80 | S




Sat Apr  3 00:42:50 2010
TCP  200.152.168.178:80 --> 192.168.1.7:40942 | SA




Sat Apr  3 00:42:50 2010
TCP  192.168.1.7:40942 --> 200.152.168.178:80 | A




Sat Apr  3 00:42:50 2010
TCP  192.168.1.7:40942 --> 200.152.168.178:80 | AP

GET / HTTP/1.1.
Host: ww w. yahoo. com.
User-Agent: Mozilla/5.0 (X11; U; Linux armv6l; en-us; rv:1.8.1) Gecko/20061010 Firefox/2.0 Midori/0.2.2.
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5.
Accept-Encoding: identity.
Cookie: B=f7kbq9p5qcvg2&b=3&s=nl; fpc=d=ylesXqt4UbE9H..wHoKnfp4gka.8zmm.FUjsr5LvHV3peW86CTzUoQrP6IaBskkW8qSEEpYzUjODh9BWYlo9w5IXHsLfg7sldIc1Yb42bMrXzsLBuLyg0v5oURAaIqKksQP.t_HXCK2N1pZ1RrihsnCsJLy244.qSc0_EZsoj43RSQOeSEJD_Jojekhlg1Qwm7Z2n.M-&v=2.
.



Sat Apr  3 00:42:50 2010
TCP  200.152.168.178:80 --> 192.168.1.7:40942 | A As you can see in Debian, the packets are likely incomplete or with some "offset", so the dissectors, nor plugins, can correctly parse useful data from it. ARP poisoning is working perfectly, as shown by chk_poison and wireshark.
  The first DNS resolution packets (UDP) seems to be OK in both distros, but not TCP ones.
  
  I have no idea on where to look now. Maybe something is trashing the packets before it arrives in ettercap.
  
  If someone have one (or many) ideas to share, I'll be very grateful. :) If more info are needed, please tell me, I'll promptly reply.
  
  Best regards.

  Tags:  nbsp quot apr sat midori lan kernel-2 dissector distros Specialist Topics  

• March 04, 2010
• 0:00

  Vuln: Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

  Tags:  wireshark dissector lwres multiple-buffer-overflow buffer-overflow-vulnerabilities  

• February 15, 2010
• 0:00

  Vuln: Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

  Tags:  wireshark dissector lwres multiple-buffer-overflow buffer-overflow-vulnerabilities  

• February 12, 2010
• 10:00

  Wireshark LWRES Dissector getaddrsbyname_request Buffer Overflow

   » ‎ 0day.today (was: 1337day, Inj3ct0r, 1337db)
  Wireshark LWRES Dissector getaddrsbyname_request Buffer Overflow

  Tags:  wireshark dissector lwres buffer-overflow  

• 0:00

  wireshark_lwres_getaddrbyname_loop.rb.txt

   » ‎ Packet Storm Security Exploits
  The LWRES dissector in Wireshark version 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allows remote attackers to execute arbitrary code due to a stack-based buffer overflow. This bug found and reported by babi. This particular exploit targets the dissect_getaddrsbyname_request function. Several other functions also contain potentially exploitable stack-based buffer overflows. The Windows version (of 1.2.5 at least) is compiled with /GS, which prevents exploitation via the return address on the stack. Sending a larger string allows exploitation using the SEH bypass method. However, this packet will usually get fragmented, which may cause additional complications. NOTE: The vulnerable code is reached only when the packet dissection is rendered. If the packet is fragmented, all fragments must be captured and reassembled to exploit this issue. This version loops, sending the packet every X seconds until the job is killed.

  Tags:  version packet wireshark based-buffer-overflow request-function dissector  

• February 08, 2010
• 0:00

  Vuln: Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

  Tags:  wireshark dissector lwres multiple-buffer-overflow buffer-overflow-vulnerabilities  

• February 05, 2010
• 17:00

  wireshark_lwres_getaddrbyname.rb.txt

   » ‎ Packet Storm Security Recent Files
  The LWRES dissector in Wireshark version 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allows remote attackers to execute arbitrary code due to a stack-based buffer overflow. This bug found and reported by babi. This particular exploit targets the dissect_getaddrsbyname_request function. Several other functions also contain potentially exploitable stack-based buffer overflows. The Windows version (of 1.2.5 at least) is compiled with /GS, which prevents exploitation via the return address on the stack. Sending a larger string allows exploitation using the SEH bypass method. However, this packet will usually get fragmented, which may cause additional complications. NOTE: The vulnerable code is reached only when the packet dissection is rendered. If the packet is fragmented, all fragments must be captured and reassembled to exploit this issue.

  Tags:  version packet wireshark based-buffer-overflow request-function dissector  

• 17:00

  wireshark_lwres_getaddrbyname.rb.txt

   » ‎ Packet Storm Security Exploits
  The LWRES dissector in Wireshark version 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allows remote attackers to execute arbitrary code due to a stack-based buffer overflow. This bug found and reported by babi. This particular exploit targets the dissect_getaddrsbyname_request function. Several other functions also contain potentially exploitable stack-based buffer overflows. The Windows version (of 1.2.5 at least) is compiled with /GS, which prevents exploitation via the return address on the stack. Sending a larger string allows exploitation using the SEH bypass method. However, this packet will usually get fragmented, which may cause additional complications. NOTE: The vulnerable code is reached only when the packet dissection is rendered. If the packet is fragmented, all fragments must be captured and reassembled to exploit this issue.

  Tags:  version packet wireshark based-buffer-overflow request-function dissector  

• February 02, 2010
• 21:00

  MDVSA-2010-031.txt

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2010-031 - This advisory updates Wireshark to the version 1.0.11, which fixes The SMB and SMB2 dissectors could crash. The Infiniband dissector could crash on some platforms. Several buffer overflows were discovered and fixed in the LWRES dissector.

  Tags:  dissector smb mdvsa mandriva-linux advisory-updates buffer-overflows  

• 21:00

  MDVSA-2010-031.txt

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2010-031 - This advisory updates Wireshark to the version 1.0.11, which fixes The SMB and SMB2 dissectors could crash. The Infiniband dissector could crash on some platforms. Several buffer overflows were discovered and fixed in the LWRES dissector.

  Tags:  dissector smb mdvsa mandriva-linux advisory-updates buffer-overflows  

• January 29, 2010
• 0:00

  Vuln: Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

  Tags:  wireshark dissector lwres multiple-buffer-overflow buffer-overflow-vulnerabilities  

• January 28, 2010
• 0:00

  Vuln: Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

  Tags:  wireshark dissector lwres multiple-buffer-overflow buffer-overflow-vulnerabilities