Multiple vulnerabilities have been reported in Wireshark, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

1) A boundary error in the "dissect_enttec_dmx_data()" function (epan/dissectors/packet-enttec.c) when processing RLE Compressed DMX data of the ENTTEC protocol can be exploited to cause a buffer overflow via a specially crafted packet sent to UDP port 3333.

2) A boundary error in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) can be exploited to cause a stack-based buffer overflow.

3) A boundary error in the "snmp_usm_password_to_key_sha1()" function (asn1/snmp/packet-snmp-template.c) can be exploited to cause a stack-based buffer overflow.

Successful exploitation of vulnerabilities #1, #2, and #3 may allow execution of arbitrary code.

4) An error in the ASN.1 BER dissector can be exploited to corrupt memory and cause the process to terminate.

This vulnerability is reported in versions 1.4.0 to 1.4.2 only.

The other vulnerabilities are reported in versions 1.2.0 to 1.2.13 and 1.4.0 to 1.4.2.

Solution
Update to version 1.2.14 or 1.4.3.

Provided and/or discovered by
1,2) The vendor credits FRAsse, non-customers.
3) Reported by FRAsse, non-customers in a Wireshark bug report.
4) Reported by the vendor.

Changelog
Further details available to Secunia VIM customers

Original Advisory
http://www.wireshark.org/security/wnpa-sec-2011-01.html
http://www.wireshark.org/security/wnpa-sec-2011-02.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5530

Deep Links
Links available to Secunia VIM customers