Wireshark contains a buffer overflow vulnerability within the ENTTEC dissector when processing malformed packets captured from the wire and when loaded from a capture file. Successful exploitation could allow an attacker to cause a denial of service condition (i.e. application crash, resource consumption) or execute arbitrary code.
BeyondTrust Prevention and Detection:
- BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
- 13939 - Wireshark Multiple Vulnerabilities (20110111) - Windows
- 13940 - Wireshark Multiple Vulnerabilities (20110111) - UNIX/Linux
Update Wireshark to 1.2.14, 1.4.3, or newest version.