It was found that wireshark could run arbitrary Lua scripts. Reference: http://www.wireshark.org/security/wnpa-sec-2011-15.html This issue affects the versions of wireshark shipped with Fedora-14, Fedora-15 and the upcoming Fedora-16 and has been fixed via the following security advisories: https://admin.fedoraproject.org/updates/FEDORA-2011-12423 https://admin.fedoraproject.org/updates/FEDORA-2011-12403 https://admin.fedoraproject.org/updates/FEDORA-2011-12399
Version of wireshark shipped with Red Hat Enterprise Linux 4 and 5, does not have lua support. Version of wireshark shipped with Red Hat Enterprise Linux 6 is built without lua support. Statement: Not Vulnerable. This issue does not affect the version of wireshark shipped with Red Hat Enterprise Linux 4, 5 or 6.
This issue was assigned the name CVE-2011-3360.