Vulnerability Solutions

The Nimsoft Cloud Monitor Periodic Vulnerability Scan checks for the vulnerability below. To see the most recently added vulnerability solutions that are scanned by WatchMouse, go to the Vulnerability Solutions overview

SuSE 11.0 Security Update: wireshark (2010-02-03)
Category: SuSE Local Security Checks	Risk factor: High	Added: 18 Mar 2010
Synopsis: The remote SuSE system is missing a security patch for wireshark Description: This update of wireshark fixes: - CVE-2009-4376: Remote attackers could potentially trigger a buffer overflow in the Daintree SNA file parser. - CVE-2009-4377: Specially crafted packets could cause the SMB and SMB2 dissector to crash wireshark. - CVE-2009-2563: Unspecified vulnerability in the Infiniband dissector allows remote attackers to cause a denial of service. - CVE-2010-0304: Several buffer overflows in the LWRES dissector. See also: https://bugzilla.novell.com/show_bug.cgi?id=565902 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4377 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4376 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0304 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2563 Solution: Run yast to install the security patch for wireshark Risk factor: High / CVSS Base Score : 9.3 (CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)