Wireshark 1.0.4 Released (Ethereal)

Hacking Tools

The most popular and my favorite packet sniffer.
Now, Wireshark 1.0.4 (Ethereal) has been released to address multiple security issues along with several powerful features.
Installers for Windows, Mac OS X Intel 10.5, and source code is now available.

WiresharkEthereal

Impact :
It may be possible to make Wireshark crash by injecting a series of malformed packets onto the wire or by convincing someone to read a malformed packet trace file.

In This Release :
Security-related bugs in the Bluetooth ACL, Bluetooth RFCOMM, PRP, Q.931, MATE, and USB dissectors, as well as the Tammos CommView file parser have been fixed. See the advisory for details.

Many other bugs have been fixed.

This release includes an experimental package for Mac OS X Intel 10.5. For a complete list of changes, please refer to the 1.0.4 release notes.
Official releases are available right now from the download page.

Resolution :
Upgrade to Wireshark 1.0.4 or later. Due to the nature of the bugs, there is no workaround for previous versions.

Download :
http://www.wireshark.org/download.html

Advisory :
http://www.wireshark.org/security/wnpa-sec-2008-06.html

More Info :
http://www.wireshark.org/news/20081020.html

Leave a Reply