Infesting you with Virus News
 

News

Contributed by: Lauren Gerber
Date: July 21, 2009
Lauren Gerber
6
Vote
0

Don't Let The Wireshark Vulnerabilities Eat Your Computer Alive
 

What is your biggest fear, besides your hard drive crashing with an entire lifetime of photos on it and no backup? Many people will say that they suffer from Selachophobia, which is defined as:"an abnormal and persistent fear of sharks ". In that case, if you think that just because you are on the internet you can't get attacked by a shark, then you are very much mistaken. The latest news is that multiple vulnerabilities have been discovered in versions of Wireshark.

There are many harsh ramifications that exist due to these vulnerabilities. One of the main risks related to these vulnerabilities involve malicious online attackers targeting systems and causing them to malfunction or crash dramatically. Attackers could also make use of and consume all the memory resources on your machine or system. This is achieved by sending manipulated data to the victim with the use of strategic methodologies. Never underestimate the power of these strategies as they are cleverly planned out with care and precision.                                                                                                  

 The following Wireshark vulnerabilities were a huge problem:
The sFlow dissector could use excessive CPU and memory. (Bug 3570) Versions affected: 1.2.0
The MIOP dissector runs the risk of crashing. (Bug 3652) Versions affected: 1.2.0
The RADIUS dissector could potentially crash. (Bug 3578) Versions affected: 1.2.0
The Bluetooth L2CAP dissector could also crash. (Bug 3572) Versions affected: 1.2.0
The Infiniband dissector could crash on some platforms. Versions affected: 1.0.6 to 1.2.0
The AFS dissector could also potentially crash. (Bug 3564) Versions affected: 0.9.2 to 1.2.0
The IPMI dissector could overrun a buffer. (Bug 3559) Versions affected: 1.2.0

Table 1. Problematic Wireshark vulnerabilities

The versions which have been affected are versions 0.9.2 including versions 1.2.0. Enough bad news, now it is time for some good news. Wireshark has proudly released its new 1.2.1 version. One of the options available to rectify this dilemma is to upgrade and try out the latest version for yourself.1Wireshark.png

A problem may however occur if you are running the Wireshark 1.2.0 or earlier versions with the inclusion of Ethereal, which are unable to upgrade effectively. There are ways to work around this problem by following the instructions listed below:

To disable the dissectors which are affected:

  1. Proceed to select: "Analyze the following: Enabled Protocols" directly from the menu.
  2. Please make sure that "AFS (RX)", "Infiniband", "IPMI/ATCA", "L2CAP", "MIOP", "RADIUS", and "sFlow" are all un-checked.
  3. You need to select and click on the "Save" option and, then click the "OK" option.

You can use Wireshark with the majority of operating systems with the inclusion of Linux, UNIX as well as Windows. This includes the Windows Millennium Edition which includes these files: adapter.inf, BGTag.exe, cabbit.exe, danger~1.dll, ebdundo.exe as well as fa510nd5.inf.

I hope that this new update allows everyone to have a much safer Wireshark experience. I would like to leave you with a quote in conclusion:"I think it's fair to say that personal computers have become the most empowering tool we've ever created. They're tools of communication, they're tools of creativity, and they can be shaped by their user".-Bill Gates

Resources:
The Wireshark vulnerabilities.
About Wireshark.
Some additional information and help with regard to the Wireshark vulnerabilities.
You can download the new version here.

User Comments

Name:
Email:
Website:
Comment:
Please type 5-digit security code below:
Captcha image for spam protection

Featured Videos

Registry Tutorials
From: PC1News Videos
Added: June 13, 2009
more videos

Software Downloads

SpyHunter V.3
Free Spyhunter Scanner (Spyware/Trojan Detection). DETECT Spyware, Trojans, Worms, Viruses and malware on your PC absolutely FREE.
Download now
Registry Mechanic 8
Award Winning software, Fixes registry and improves computer performance. Created by a division of Symantec, this tool will scan your registry and find errors that can be later cleaned either individually or all together.
Download now
SpywareBlaster 4.1
The tool is used to prevent the installation of spyware and other potentially unwanted software. As soon as you download it, you will be able to protect your system.
Download now

Latest Comments

Struggle the most dangerous form of computer virus - the worm!
March 10, 2010
misa campo is much better u *** tards more..
Don’t Risk Downloading Antivirus Soft to Your PC!
March 10, 2010
go to bleeping computer.com..d .. r.com..downloada file called Rkill. But first if you are having trouble... more..
Dr. Guard Can Hit Your Computer Hard
March 10, 2010
dr. guard is the worst i've encountered. I manually made all the deletions of files and registry entries.... more..
more comments..
rss
Home | Files | Programs | Latest Comments | About us | Privacy Policy | Contributors | Contact Us
© 2008 - 2010 pc1news.com - All rights reserved.
Home  Tips  Downloads Videos Virus List Vulnerabilities
Home > Computer Security > Don't Let The Wireshark Vulnerabilities Eat Your Computer Alive