see: http://secunia.com/advisories/45815/ the 1.6.1 wireshark stable version contains the vulnerable version is a new wireshark on its way? Or is this not true? see below Description A vulnerability has been reported in GTK+, which can be exploited by malicious people to compromise an application using the library. The vulnerability is caused due to the "_gdk_input_wintab_init_check()" (gdk/win32/gdkinput-win32.c) and the "xp_theme_init()" functions (modules/engines/ms-windows/xp_theme.c) loading libraries (wintab32.dll and uxtheme.dll) in an insecure manner. This can be exploited to load arbitrary libraries when an application using this library e.g. opens a file located on a remote WebDAV or SMB share. Successful exploitation may allow execution of arbitrary code. Solution Update to version 2.24.0. Provided and/or discovered by JVN credits Naoto Katsumi, LAC Co., Ltd. Original Advisory JVN: http://jvn.jp/en/jp/JVN58019849/index.html GTK+: http://git.gnome.org/browse/gtk+/commit/modules/engines/ms-windows/xp_theme.c?h=gtk-2-24&id=d6e11a97e318158f5d210a0476870dfe14ed95e6 http://git.gnome.org/browse/gtk+/commit/gdk/win32/gdkinput-win32.c?h=gtk-2-24&id=88f54ea47d4a55bbbf9e34a7a0502f365eb69ae5&ss=1 Deep Links Links available in Customer Area asked 07 Sep '11, 06:44  reijken01 |
One Answer:
It looks like this issue was fixed in various branches in the GTK+ sources (including 2-16 and 2-22) on September 2, 2010. Wireshark 1.6 ships with files from Wireshark 1.4 ships with files from answered 07 Sep '11, 10:56  Gerald Combs ♦♦ |
One problem is that the GTK+ project has stopped providing bundles. The latest available is 2.22 which i the one we use.