Max CVSS | 10.0 | Min CVSS | 2.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-1142 | 5.0 |
Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-ref
|
22-12-2023 - 18:18 | 03-03-2011 - 01:00 | |
CVE-2012-1595 | 4.3 |
The pcap_process_pseudo_header function in wiretap/pcap-common.c in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (application crash) via a WTAP_ENCAP_ERF file containing an Extension or Mul
|
13-02-2023 - 04:33 | 11-04-2012 - 10:39 | |
CVE-2011-2698 | 4.3 |
Off-by-one error in the elem_cell_id_aux function in epan/dissectors/packet-ansi_a.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service (infinite loop) via an invalid
|
13-02-2023 - 04:31 | 23-08-2011 - 21:55 | |
CVE-2011-1958 | 4.3 |
Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Diameter dictionary file.
|
13-02-2023 - 04:30 | 06-06-2011 - 19:55 | |
CVE-2011-1590 | 4.3 |
The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.
|
13-02-2023 - 04:29 | 29-04-2011 - 22:55 | |
CVE-2012-0067 | 4.3 |
wiretap/iptrace.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in an AIX iptrace file.
|
13-02-2023 - 03:24 | 11-04-2012 - 10:39 | |
CVE-2009-3551 | 5.0 |
Off-by-one error in the dissect_negprot_response function in packet-smb.c in the SMB dissector in Wireshark 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace.
|
13-02-2023 - 02:20 | 30-10-2009 - 20:30 | |
CVE-2009-3550 | 4.3 |
The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file that records a malformed packet trace. NOTE: some of t
|
13-02-2023 - 02:20 | 30-10-2009 - 20:30 | |
CVE-2007-6439 | 6.1 |
Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite or large loop) via the (1) IPv6 or (2) USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Fir
|
13-02-2023 - 02:18 | 19-12-2007 - 22:46 | |
CVE-2007-6438 | 5.0 |
Unspecified vulnerability in the SMB dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service via unknown vectors. NOTE: this identifier originally included MP3 and NCP, but those issues are already cover
|
13-02-2023 - 02:18 | 19-12-2007 - 22:46 | |
CVE-2011-1957 | 4.3 |
The dissect_dcm_main function in epan/dissectors/packet-dcm.c in the DICOM dissector in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (infinite loop) via an invalid PDU length.
|
13-02-2023 - 01:19 | 06-06-2011 - 19:55 | |
CVE-2011-0713 | 6.8 |
Heap-based buffer overflow in wiretap/dct3trace.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long record in a Noki
|
13-02-2023 - 01:18 | 03-03-2011 - 01:00 | |
CVE-2013-4081 | 5.0 |
The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 does not properly determine when to use a recursive approach, which allows remote attackers to cause
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2013-2475 | 3.3 |
The TCP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-2483 | 3.3 |
The acn_add_dmp_data function in epan/dissectors/packet-acn.c in the ACN dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via an invali
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-2480 | 3.3 |
The RTPS and RTPS2 dissectors in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allow remote attackers to cause a denial of service (application crash) via a malformed packet.
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-2487 | 7.8 |
epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer data types, which allows remote attackers to cause a denial of service (infinite loop) via crafted in
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-3561 | 7.8 |
Multiple integer overflows in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (loop or application crash) via a malformed packet, related to a crash of the Websocket dissector, an infinite loop in the MySQL dissector,
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4292 | 3.3 |
The dissect_stun_message function in epan/dissectors/packet-stun.c in the STUN dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly interact with key-destruction behavior in a certain tree library,
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4075 | 5.0 |
epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2012-4296 | 3.3 |
Buffer overflow in epan/dissectors/packet-rtps2.c in the RTPS2 dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet.
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-3558 | 5.0 |
The dissect_ccp_bsdcomp_opt function in epan/dissectors/packet-ppp.c in the PPP CCP dissector in Wireshark 1.8.x before 1.8.7 does not terminate a bit-field list, which allows remote attackers to cause a denial of service (application crash) via a ma
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4288 | 3.3 |
Integer overflow in the dissect_xtp_ecntl function in epan/dissectors/packet-xtp.c in the XTP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop or applic
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4076 | 5.0 |
Buffer overflow in the dissect_iphc_crtp_fh function in epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2013-2476 | 6.1 |
The dissect_hartip function in epan/dissectors/packet-hartip.c in the HART/IP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a packet with a header that is too short.
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-2477 | 3.3 |
The CSN.1 dissector in Wireshark 1.8.x before 1.8.6 does not properly manage function pointers, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-3555 | 5.0 |
epan/dissectors/packet-gtpv2.c in the GTPv2 dissector in Wireshark 1.8.x before 1.8.7 calls incorrect functions in certain contexts related to ciphers, which allows remote attackers to cause a denial of service (application crash) via a malformed pac
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4291 | 3.3 |
The CIP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet.
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-2481 | 2.9 |
Integer signedness error in the dissect_mount_dirpath_call function in epan/dissectors/packet-mount.c in the Mount dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6, when nfs_file_name_snooping is enabled, allows remote attackers to c
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-3559 | 5.0 |
epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.8.x before 1.8.7 uses incorrect integer data types, which allows remote attackers to cause a denial of service (integer overflow, and heap memory corruption or NULL pointer de
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4285 | 3.3 |
The dissect_pft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (divide-by-zero error and appli
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4082 | 5.0 |
The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.8 does not validate the relationship between a record length and a trailer length, which allows remote attackers to cause a denial of service (hea
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2012-4289 | 3.3 |
epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a large number of ACL entries.
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4079 | 5.0 |
The dissect_schedule_message function in epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (infinite loop and application hang) via a crafted packet.
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2013-3562 | 5.0 |
Multiple integer signedness errors in the tvb_unmasked function in epan/dissectors/packet-websocket.c in the Websocket dissector in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (application crash) via a malformed p
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4290 | 3.3 |
The CTDB dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a malformed packet.
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-3560 | 5.0 |
The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC dissector in Wireshark 1.8.x before 1.8.7 uses an incorrect format string, which allows remote attackers to cause a denial of service (application crash)
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2013-2479 | 3.3 |
The dissect_mpls_echo_tlv_dd_map function in epan/dissectors/packet-mpls-echo.c in the MPLS Echo dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via invalid Sub-tlv data.
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-4078 | 5.0 |
epan/dissectors/packet-rdp.c in the RDP dissector in Wireshark 1.8.x before 1.8.8 does not validate return values during checks for data availability, which allows remote attackers to cause a denial of service (application crash) via a crafted packet
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2012-4293 | 3.3 |
plugins/ethercat/packet-ecatmb.c in the EtherCAT Mailbox dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly handle certain integer fields, which allows remote attackers to cause a denial of servi
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-2478 | 3.3 |
The dissect_server_info function in epan/dissectors/packet-ms-mms.c in the MS-MMS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not properly manage string lengths, which allows remote attackers to cause a denial of service (a
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-4074 | 5.0 |
The dissect_capwap_data function in epan/dissectors/packet-capwap.c in the CAPWAP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 incorrectly uses a -1 data value to represent an error condition, which allows remote attackers to cau
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2012-4049 | 2.9 |
epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet.
|
30-10-2018 - 16:27 | 24-07-2012 - 19:55 | |
CVE-2013-2484 | 3.3 |
The CIMD dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-4077 | 5.0 |
Array index error in the NBAP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to nbap.cnf and packet-nbap.c.
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2013-2482 | 6.1 |
The AMPQ dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-2486 | 6.1 |
The dissect_diagnosticrequest function in epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses an incorrect integer data type, which allows remote attackers to cause a deni
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-3557 | 5.0 |
The dissect_ber_choice function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.6.x before 1.6.15 and 1.8.x before 1.8.7 does not properly initialize a certain variable, which allows remote attackers to cause a denial of ser
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2013-2485 | 6.1 |
The FCSP dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-2488 | 5.0 |
The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service (application crash) via a large
|
30-10-2018 - 16:27 | 07-03-2013 - 15:55 | |
CVE-2013-5719 | 4.3 |
epan/dissectors/packet-assa_r3.c in the ASSA R3 dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
|
30-10-2018 - 16:26 | 16-09-2013 - 13:01 | |
CVE-2013-5721 | 4.3 |
The dissect_mq_rr function in epan/dissectors/packet-mq.c in the MQ dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 does not properly determine when to enter a certain loop, which allows remote attackers to cause a denial of servi
|
30-10-2018 - 16:26 | 16-09-2013 - 13:01 | |
CVE-2013-5720 | 5.0 |
Buffer overflow in the RTPS dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
30-10-2018 - 16:26 | 16-09-2013 - 13:01 | |
CVE-2013-5718 | 4.3 |
The dissect_nbap_T_dCH_ID function in epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 does not restrict the dch_id value, which allows remote attackers to cause a denial of service (applic
|
30-10-2018 - 16:26 | 16-09-2013 - 13:01 | |
CVE-2013-5722 | 4.3 |
Unspecified vulnerability in the LDAP dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
30-10-2018 - 16:26 | 16-09-2013 - 13:01 | |
CVE-2013-5717 | 4.3 |
The Bluetooth HCI ACL dissector in Wireshark 1.10.x before 1.10.2 does not properly maintain a certain free list, which allows remote attackers to cause a denial of service (application crash) via a crafted packet that is not properly handled by the
|
30-10-2018 - 16:26 | 16-09-2013 - 13:01 | |
CVE-2006-5740 | 5.0 |
Unspecified vulnerability in the LDAP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via a crafted LDAP packet.
|
17-10-2018 - 21:44 | 27-10-2006 - 23:07 | |
CVE-2006-5468 | 5.0 |
Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via unspecified vectors.
|
17-10-2018 - 21:43 | 27-10-2006 - 23:07 | |
CVE-2006-4330 | 4.3 |
Unspecified vulnerability in the SCSI dissector in Wireshark (formerly Ethereal) 0.99.2 allows remote attackers to cause a denial of service (crash) via unspecified vectors.
|
17-10-2018 - 21:34 | 24-08-2006 - 20:04 | |
CVE-2007-6441 | 3.3 |
The WiMAX dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (crash) via unknown vectors related to "unaligned access on some platforms."
|
15-10-2018 - 21:54 | 19-12-2007 - 22:46 | |
CVE-2007-6115 | 10.0 |
Buffer overflow in the ANSI MAP dissector for Wireshark (formerly Ethereal) 0.99.5 to 0.99.6, when running on unspecified platforms, allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown vectors.
|
15-10-2018 - 21:50 | 23-11-2007 - 20:46 | |
CVE-2007-6120 | 5.0 |
The Bluetooth SDP dissector Wireshark (formerly Ethereal) 0.99.2 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
|
15-10-2018 - 21:50 | 23-11-2007 - 20:46 | |
CVE-2007-6119 | 7.8 |
The DCP ETSI dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (long loop and resource consumption) via unknown vectors.
|
15-10-2018 - 21:50 | 23-11-2007 - 20:46 | |
CVE-2007-6116 | 5.0 |
The Firebird/Interbase dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite loop or crash) via unknown vectors.
|
15-10-2018 - 21:50 | 23-11-2007 - 20:46 | |
CVE-2007-6112 | 10.0 |
Buffer overflow in the PPP dissector Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors.
|
15-10-2018 - 21:49 | 23-11-2007 - 20:46 | |
CVE-2008-4680 | 4.3 |
packet-usb.c in the USB dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a malformed USB Request Block (URB).
|
11-10-2018 - 20:52 | 22-10-2008 - 18:00 | |
CVE-2008-4682 | 5.0 |
wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application abort) via a malformed Tamos CommView capture file (aka .ncf file) with an "unknown/unexpected packet type" that triggers a failed assertion.
|
11-10-2018 - 20:52 | 22-10-2008 - 18:00 | |
CVE-2008-4681 | 4.3 |
Unspecified vulnerability in the Bluetooth RFCOMM dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via unknown packets.
|
11-10-2018 - 20:52 | 22-10-2008 - 18:00 | |
CVE-2008-4684 | 4.3 |
packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly handle exceptions thrown by post dissectors, which allows remote attackers to cause a denial of service (application crash) via a certain series of packets, as demonstrated by enabling
|
11-10-2018 - 20:52 | 22-10-2008 - 18:00 | |
CVE-2008-4683 | 5.0 |
The dissect_btacl function in packet-bthci_acl.c in the Bluetooth ACL dissector in Wireshark 0.99.2 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a packet with an invalid length, related to an err
|
11-10-2018 - 20:52 | 22-10-2008 - 18:00 | |
CVE-2008-3934 | 3.3 |
Unspecified vulnerability in Wireshark (formerly Ethereal) 0.99.6 through 1.0.2 allows attackers to cause a denial of service (crash) via a crafted Tektronix .rf5 file.
|
11-10-2018 - 20:50 | 04-09-2008 - 19:41 | |
CVE-2008-3139 | 5.0 |
The RTMPT dissector in Wireshark (formerly Ethereal) 0.99.8 through 1.0.0 allows remote attackers to cause a denial of service (crash) via unknown vectors. NOTE: this might be due to a use-after-free error.
|
11-10-2018 - 20:47 | 10-07-2008 - 23:41 | |
CVE-2008-3138 | 5.0 |
The (1) PANA and (2) KISMET dissectors in Wireshark (formerly Ethereal) 0.99.3 through 1.0.0 allow remote attackers to cause a denial of service (application stop) via unknown vectors.
|
11-10-2018 - 20:47 | 10-07-2008 - 23:41 | |
CVE-2008-3137 | 4.3 |
The GSM SMS dissector in Wireshark (formerly Ethereal) 0.99.2 through 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors.
|
11-10-2018 - 20:47 | 10-07-2008 - 23:41 | |
CVE-2008-3140 | 5.0 |
The syslog dissector in Wireshark (formerly Ethereal) 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors, possibly related to an "incomplete SS7 MSU syslog encapsulated packet."
|
11-10-2018 - 20:47 | 10-07-2008 - 23:41 | |
CVE-2008-1561 | 5.0 |
Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) 0.99.5 through 0.99.8 allow remote attackers to cause a denial of service (application crash) via a malformed packet to the (1) X.509sat or (2) Roofnet dissectors. NOTE: Vector 2
|
11-10-2018 - 20:35 | 31-03-2008 - 22:44 | |
CVE-2008-1562 | 5.0 |
The LDAP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet, a different vulnerability than CVE-2006-5740.
|
11-10-2018 - 20:35 | 31-03-2008 - 22:44 | |
CVE-2008-1563 | 4.3 |
The "decode as" feature in packet-bssap.c in the SCCP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
11-10-2018 - 20:35 | 31-03-2008 - 22:44 | |
CVE-2008-1071 | 4.3 |
The SNMP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.7 allows remote attackers to cause a denial of service (crash) via a malformed packet.
|
11-10-2018 - 20:29 | 28-02-2008 - 22:44 | |
CVE-2008-1070 | 5.0 |
The SCTP dissector in Wireshark (formerly Ethereal) 0.99.5 through 0.99.7 allows remote attackers to cause a denial of service (crash) via a malformed packet.
|
11-10-2018 - 20:29 | 28-02-2008 - 22:44 | |
CVE-2009-1267 | 5.0 |
Unspecified vulnerability in the LDAP dissector in Wireshark 0.99.2 through 1.0.6, when running on Windows, allows remote attackers to cause a denial of service (crash) via unknown attack vectors.
|
10-10-2018 - 19:35 | 13-04-2009 - 16:30 | |
CVE-2009-1210 | 10.0 |
Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details ar
|
10-10-2018 - 19:35 | 01-04-2009 - 10:30 | |
CVE-2009-1269 | 5.0 |
Unspecified vulnerability in Wireshark 0.99.6 through 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted Tektronix .rf5 file.
|
10-10-2018 - 19:35 | 13-04-2009 - 16:30 | |
CVE-2009-1268 | 4.3 |
The Check Point High-Availability Protocol (CPHAP) dissector in Wireshark 0.9.6 through 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted FWHA_MY_STATE packet.
|
10-10-2018 - 19:35 | 13-04-2009 - 16:30 | |
CVE-2009-0599 | 5.0 |
Buffer overflow in wiretap/netscreen.c in Wireshark 0.99.7 through 1.0.5 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed NetScreen snoop file.
|
10-10-2018 - 19:29 | 16-02-2009 - 20:30 | |
CVE-2009-0600 | 4.3 |
Wireshark 0.99.6 through 1.0.5 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted Tektronix K12 text capture file, as demonstrated by a file with exactly one frame.
|
10-10-2018 - 19:29 | 16-02-2009 - 20:30 | |
CVE-2011-3266 | 2.6 |
The proto_tree_add_item function in Wireshark 1.6.0 through 1.6.1 and 1.4.0 through 1.4.8, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of service (infinite loop) via vectors involving a malformed
|
09-10-2018 - 19:33 | 24-08-2011 - 00:55 | |
CVE-2012-1596 | 5.0 |
The mp2t_process_fragmented_payload function in epan/dissectors/packet-mp2t.c in the MP2T dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (application crash) via a packet containi
|
29-12-2017 - 02:29 | 11-04-2012 - 10:39 | |
CVE-2012-1593 | 3.3 |
epan/dissectors/packet-ansi_a.c in the ANSI A dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet. Per: http://
|
29-12-2017 - 02:29 | 11-04-2012 - 10:39 | |
CVE-2012-1594 | 3.3 |
epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in Wireshark 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
|
29-12-2017 - 02:29 | 11-04-2012 - 10:39 | |
CVE-2007-3391 | 7.8 |
Wireshark 0.99.5 allows remote attackers to cause a denial of service (memory consumption) via a malformed DCP ETSI packet that triggers an infinite loop.
|
11-10-2017 - 01:32 | 26-06-2007 - 00:30 | |
CVE-2006-5595 | 5.0 |
Unspecified vulnerability in the AirPcap support in Wireshark (formerly Ethereal) 0.99.3 has unspecified attack vectors related to WEP key parsing.
|
11-10-2017 - 01:31 | 28-10-2006 - 00:07 | |
CVE-2006-4331 | 5.0 |
Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote attackers to cause a denial of service (crash) via unspecified vectors.
|
11-10-2017 - 01:31 | 24-08-2006 - 20:04 | |
CVE-2007-0456 | 4.3 |
Unspecified vulnerability in the LLT dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.
|
11-10-2017 - 01:31 | 02-02-2007 - 20:28 | |
CVE-2007-0458 | 4.3 |
Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors, a different issue than CVE-2006-5468.
|
11-10-2017 - 01:31 | 02-02-2007 - 20:28 | |
CVE-2007-0459 | 5.0 |
packet-tcp.c in the TCP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.4 allows remote attackers to cause a denial of service (application crash or hang) via fragmented HTTP packets.
|
11-10-2017 - 01:31 | 02-02-2007 - 20:28 | |
CVE-2008-6472 | 4.3 |
The WLCCP dissector in Wireshark 0.99.7 through 1.0.4 allows remote attackers to cause a denial of service (infinite loop) via unspecified vectors.
|
29-09-2017 - 01:33 | 14-03-2009 - 18:30 | |
CVE-2012-0068 | 4.3 |
The lanalyzer_read function in wiretap/lanalyzer.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a Novell capture file containing a record that is too small.
|
27-09-2017 - 01:29 | 11-04-2012 - 10:39 | |
CVE-2013-6338 | 4.3 |
The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (
|
19-09-2017 - 01:36 | 04-11-2013 - 16:55 | |
CVE-2013-6340 | 4.3 |
epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a
|
19-09-2017 - 01:36 | 04-11-2013 - 16:55 | |
CVE-2013-4936 | 5.0 |
The IsDFP_Frame function in plugins/profinet/packet-pn-rt.c in the PROFINET Real-Time dissector in Wireshark 1.10.x before 1.10.1 does not validate MAC addresses, which allows remote attackers to cause a denial of service (NULL pointer dereference an
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-6337 | 4.3 |
Unspecified vulnerability in the NBAP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
19-09-2017 - 01:36 | 04-11-2013 - 16:55 | |
CVE-2013-6339 | 4.3 |
The dissect_openwire_type function in epan/dissectors/packet-openwire.c in the OpenWire dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial of service (loop) via a crafted packet.
|
19-09-2017 - 01:36 | 04-11-2013 - 16:55 | |
CVE-2013-6336 | 4.3 |
The ieee802154_map_rec function in epan/dissectors/packet-ieee802154.c in the IEEE 802.15.4 dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 uses an incorrect pointer chain, which allows remote attackers to cause a denial of servic
|
19-09-2017 - 01:36 | 04-11-2013 - 16:55 | |
CVE-2013-4935 | 4.3 |
The dissect_per_length_determinant function in epan/dissectors/packet-per.c in the ASN.1 PER dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize a length field in certain abnormal situations, which allows remote att
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4931 | 5.0 |
epan/proto.c in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop) via a crafted packet that is not properly handled by the GSM RR dissector.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4927 | 7.8 |
Integer signedness error in the get_type_length function in epan/dissectors/packet-btsdp.c in the Bluetooth SDP dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop and CPU cons
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4929 | 7.8 |
The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not terminate packet-data processing after finding zero remaining bytes, which allows remote attackers to
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4924 | 5.0 |
epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 does not properly validate certain index values, which allows remote attackers to cause a denial of service (assertion failure and applicati
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4080 | 5.0 |
The dissect_r3_upstreamcommand_queryconfig function in epan/dissectors/packet-assa_r3.c in the Assa Abloy R3 dissector in Wireshark 1.8.x before 1.8.8 does not properly handle a zero-length item, which allows remote attackers to cause a denial of ser
|
19-09-2017 - 01:36 | 09-06-2013 - 21:55 | |
CVE-2013-4930 | 5.0 |
The dissect_dvbci_tpdu_hdr function in epan/dissectors/packet-dvbci.c in the DVB-CI dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not validate a certain length value before decrementing it, which allows remote attackers to c
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4921 | 5.0 |
Off-by-one error in the dissect_radiotap function in epan/dissectors/packet-ieee80211-radiotap.c in the Radiotap dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (application crash) via a crafted packet
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4932 | 5.0 |
Multiple array index errors in epan/dissectors/packet-gsm_a_common.c in the GSM A Common dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allow remote attackers to cause a denial of service (application crash) via a crafted packet.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4933 | 5.0 |
The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) via a cr
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4923 | 5.0 |
Memory leak in the dissect_dcom_ActivationProperties function in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (memory consumption) v
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4925 | 5.0 |
Integer signedness error in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted packet.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4926 | 5.0 |
epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 does not properly determine whether there is remaining packet data to process, which allows remote attackers to cause a denial of service (a
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4934 | 4.3 |
The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize certain structure members, which allows remote attackers to cause a denial of service (application cra
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4920 | 5.0 |
The P1 dissector in Wireshark 1.10.x before 1.10.1 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4928 | 7.8 |
Integer signedness error in the dissect_headers function in epan/dissectors/packet-btobex.c in the Bluetooth OBEX dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4922 | 5.0 |
Double free vulnerability in the dissect_dcom_ActivationProperties function in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (applica
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4083 | 5.0 |
The dissect_pft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.6.x before 1.6.16, 1.8.x before 1.8.8, and 1.10.0 does not validate a certain fragment length value, which allows remote attackers to cause a denia
|
19-09-2017 - 01:36 | 09-06-2013 - 21:55 | |
CVE-2013-1590 | 2.9 |
Buffer overflow in the NTLMSSP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1586 | 2.9 |
The fragment_set_tot_len function in epan/reassemble.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly determine the length of a reassembled packet for the DTLS dissector, which allows remote attackers to cause a denial of s
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1582 | 2.9 |
The dissect_clnp function in epan/dissectors/packet-clnp.c in the CLNP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly manage an offset variable, which allows remote attackers to cause a denial of service (infinite
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1576 | 2.9 |
The dissect_sdp_media_attribute function in epan/dissectors/packet-sdp.c in the SDP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly process crypto-suite parameters, which allows remote attackers to cause a denial o
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1572 | 2.9 |
The dissect_oampdu_event_notification function in epan/dissectors/packet-slowprotocols.c in the IEEE 802.3 Slow Protocols dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle certain short lengths, which allows r
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1579 | 2.9 |
The rtps_util_add_bitmap function in epan/dissectors/packet-rtps.c in the RTPS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly implement certain nested loops for processing bitmap data, which allows remote attacker
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1587 | 2.9 |
The dissect_rohc_ir_packet function in epan/dissectors/packet-rohc.c in the ROHC dissector in Wireshark 1.8.x before 1.8.5 does not properly handle unknown profiles, which allows remote attackers to cause a denial of service (application crash) via a
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1589 | 2.9 |
Double free vulnerability in epan/proto.c in the dissection engine in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1578 | 2.9 |
The dissect_pw_eth_heuristic function in epan/dissectors/packet-pw-eth.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle apparent Ethernet address values at the beginning of MPLS data, which allows remote attackers to
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1588 | 2.9 |
Multiple buffer overflows in the dissect_pft_fec_detailed function in the DCP-ETSI dissector in epan/dissectors/packet-dcp-etsi.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allow remote attackers to cause a denial of service (application
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1581 | 2.9 |
The dissect_pft_fec_detailed function in epan/dissectors/packet-dcp-etsi.c in the DCP-ETSI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle fragment gaps, which allows remote attackers to cause a denial of se
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1585 | 2.9 |
epan/tvbuff.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly validate certain length values for the MS-MMC dissector, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1580 | 2.9 |
The dissect_cmstatus_tlv function in plugins/docsis/packet-cmstatus.c in the DOCSIS CM-STATUS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a position variable, which allows remote attackers to caus
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1584 | 2.9 |
The dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of ser
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1574 | 2.9 |
The dissect_bthci_eir_ad_data function in epan/dissectors/packet-bthci_cmd.c in the Bluetooth HCI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a counter variable, which allows remote attackers to c
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1573 | 2.9 |
The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a large number of padding bits, which allows remote attackers to cause a denial o
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1575 | 2.9 |
The dissect_r3_cmd_alarmconfigure function in epan/dissectors/packet-assa_r3.c in the R3 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a certain alarm length, which allows remote attackers to cause a denia
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1583 | 2.9 |
The dissect_version_4_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2013-1577 | 2.9 |
The dissect_sip_p_charging_func_addresses function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle offset data associated with a quoted string, which allows remote
|
19-09-2017 - 01:36 | 03-02-2013 - 01:55 | |
CVE-2012-6057 | 5.0 |
The dissect_eigrp_metric_comm function in epan/dissectors/packet-eigrp.c in the EIGRP dissector in Wireshark 1.8.x before 1.8.4 uses the wrong data type for a certain offset value, which allows remote attackers to cause a denial of service (integer o
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6062 | 5.0 |
The dissect_rtcp_app function in epan/dissectors/packet-rtcp.c in the RTCP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6052 | 5.0 |
Wireshark 1.8.x before 1.8.4 allows remote attackers to obtain sensitive hostname information by reading pcap-ng files.
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6058 | 5.0 |
Integer overflow in the dissect_icmpv6 function in epan/dissectors/packet-icmpv6.c in the ICMPv6 dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted Numb
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6061 | 5.0 |
The dissect_wtp_common function in epan/dissectors/packet-wtp.c in the WTP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 uses an incorrect data type for a certain length field, which allows remote attackers to cause a denial of se
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6053 | 5.0 |
epan/dissectors/packet-usb.c in the USB dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 relies on a length field to calculate an offset value, which allows remote attackers to cause a denial of service (infinite loop) via a zero val
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6059 | 5.0 |
The dissect_isakmp function in epan/dissectors/packet-isakmp.c in the ISAKMP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 uses an incorrect data structure to determine IKEv2 decryption parameters, which allows remote attackers to
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6060 | 5.0 |
Integer overflow in the dissect_iscsi_pdu function in epan/dissectors/packet-iscsi.c in the iSCSI dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a malformed p
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6056 | 5.0 |
Integer overflow in the dissect_sack_chunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted Duplicate TSN count.
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-6054 | 5.0 |
The dissect_sflow_245_address_type function in epan/dissectors/packet-sflow.c in the sFlow dissector in Wireshark 1.8.x before 1.8.4 does not properly handle length calculations for an invalid IP address type, which allows remote attackers to cause a
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-5238 | 3.3 |
epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.3 uses incorrect OUI data structures during the decoding of (1) PPP and (2) LCP data, which allows remote attackers to cause a denial of service (assertion failure and ap
|
19-09-2017 - 01:35 | 04-10-2012 - 19:55 | |
CVE-2012-6055 | 5.0 |
epan/dissectors/packet-3g-a11.c in the 3GPP2 A11 dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a zero value in a sub-type length field.
|
19-09-2017 - 01:35 | 05-12-2012 - 11:57 | |
CVE-2012-5240 | 5.8 |
Buffer overflow in the dissect_tlv function in epan/dissectors/packet-ldp.c in the LDP dissector in Wireshark 1.8.x before 1.8.3 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a
|
19-09-2017 - 01:35 | 04-10-2012 - 19:55 | |
CVE-2012-4287 | 5.0 |
epan/dissectors/packet-mongo.c in the MongoDB dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a small value for a BSON document length.
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-3825 | 3.3 |
Multiple integer overflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) BACapp and (2) Bluetooth HCI dissectors, a different vulnerability t
|
19-09-2017 - 01:35 | 30-06-2012 - 10:15 | |
CVE-2012-5237 | 3.3 |
The dissect_hsrp function in epan/dissectors/packet-hsrp.c in the HSRP dissector in Wireshark 1.8.x before 1.8.3 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
|
19-09-2017 - 01:35 | 04-10-2012 - 19:55 | |
CVE-2012-3826 | 3.3 |
Multiple integer underflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (loop) via vectors related to the R3 dissector, a different vulnerability than CVE-2012-2392.
|
19-09-2017 - 01:35 | 30-06-2012 - 10:15 | |
CVE-2012-4295 | 3.3 |
Array index error in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service (application crash) via a crafted speed
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-4294 | 5.8 |
Buffer overflow in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to execute arbitrary code via a large speed (aka rate) value.
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-4048 | 3.3 |
The PPP dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted packet, as demonstrated by a usbmon
|
19-09-2017 - 01:35 | 24-07-2012 - 19:55 | |
CVE-2012-4298 | 5.4 |
Integer signedness error in the vwr_read_rec_data_ethernet function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.2 allows user-assisted remote attackers to execute arbitrary code via a crafted packet-trace file th
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-4286 | 4.3 |
The pcapng_read_packet_block function in wiretap/pcapng.c in the pcap-ng file parser in Wireshark 1.8.x before 1.8.2 allows user-assisted remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted pcap-ng
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-3548 | 4.3 |
The dissect_drda function in epan/dissectors/packet-drda.c in Wireshark 1.6.x through 1.6.10 and 1.8.x through 1.8.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a small value for a certain length field
|
19-09-2017 - 01:35 | 30-08-2012 - 22:55 | |
CVE-2012-4297 | 8.3 |
Buffer overflow in the dissect_gsm_rlcmac_downlink function in epan/dissectors/packet-gsm_rlcmac.c in the GSM RLC MAC dissector in Wireshark 1.6.x before 1.6.10 and 1.8.x before 1.8.2 allows remote attackers to execute arbitrary code via a malformed
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2011-4100 | 4.3 |
The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.3 does not initialize a certain variable, which allows remote attackers to cause a denial of service (application crash) via a malfo
|
19-09-2017 - 01:34 | 03-11-2011 - 15:55 | |
CVE-2011-4102 | 4.3 |
Heap-based buffer overflow in the erf_read_header function in wiretap/erf.c in the ERF file parser in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (application crash) via a malformed file.
|
19-09-2017 - 01:34 | 03-11-2011 - 15:55 | |
CVE-2011-4101 | 4.3 |
The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and appli
|
19-09-2017 - 01:34 | 03-11-2011 - 15:55 | |
CVE-2012-2393 | 3.3 |
epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 does not properly construct certain array data structures, which allows remote attackers to cause a denial of service (application cra
|
19-09-2017 - 01:34 | 30-06-2012 - 10:15 | |
CVE-2012-2392 | 3.3 |
Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allows remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) ANSI MAP, (2) ASF, (3) IEEE 802.11, (4) IEEE 802.3, and (5) LTP dissectors.
|
19-09-2017 - 01:34 | 30-06-2012 - 10:15 | |
CVE-2012-0043 | 5.8 |
Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) or possibly execu
|
19-09-2017 - 01:34 | 11-04-2012 - 10:39 | |
CVE-2012-0042 | 2.9 |
Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet, related to ep
|
19-09-2017 - 01:34 | 11-04-2012 - 10:39 | |
CVE-2012-0041 | 4.3 |
The dissect_packet function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a capture file, as demonstrated by an airopeek file.
|
19-09-2017 - 01:34 | 11-04-2012 - 10:39 | |
CVE-2012-0066 | 4.3 |
Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a (1) Accellent 5Views (aka .5vw) file, (2) I4B trace file, or (3) NETMON 2 capture file.
|
19-09-2017 - 01:34 | 11-04-2012 - 10:39 | |
CVE-2011-3483 | 4.3 |
Wireshark 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (application crash) via a malformed capture file that leads to an invalid root tvbuff, related to a "buffer exception handling vulnerability."
|
19-09-2017 - 01:33 | 20-09-2011 - 10:55 | |
CVE-2011-3482 | 4.3 |
The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.2 does not initialize a certain structure member, which allows remote attackers to cause a denial of service (application crash) via
|
19-09-2017 - 01:33 | 20-09-2011 - 10:55 | |
CVE-2011-3360 | 9.3 |
Untrusted search path vulnerability in Wireshark 1.4.x before 1.4.9 and 1.6.x before 1.6.2 allows local users to gain privileges via a Trojan horse Lua script in an unspecified directory. Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426:
|
19-09-2017 - 01:33 | 20-09-2011 - 10:55 | |
CVE-2011-3484 | 4.3 |
The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial of service (loop and applicati
|
19-09-2017 - 01:33 | 20-09-2011 - 10:55 | |
CVE-2011-2597 | 4.3 |
The Lucent/Ascend file parser in Wireshark 1.2.x before 1.2.18, 1.4.x through 1.4.7, and 1.6.0 allows remote attackers to cause a denial of service (infinite loop) via malformed packets.
|
19-09-2017 - 01:33 | 07-07-2011 - 19:55 | |
CVE-2011-1591 | 9.3 |
Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted .pcap file.
|
19-09-2017 - 01:32 | 29-04-2011 - 22:55 | |
CVE-2011-1956 | 4.3 |
The bytes_repr_len function in Wireshark 1.4.5 uses an incorrect pointer argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via arbitrary TCP traffic. Per: http://cwe.mitre.org/data/d
|
19-09-2017 - 01:32 | 06-06-2011 - 19:55 | |
CVE-2011-2174 | 4.3 |
Double free vulnerability in the tvb_uncompress function in epan/tvbuff.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a packet with malformed data that uses zlib
|
19-09-2017 - 01:32 | 06-06-2011 - 19:55 | |
CVE-2011-1592 | 4.3 |
The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service (application crash) via
|
19-09-2017 - 01:32 | 29-04-2011 - 22:55 | |
CVE-2011-1959 | 4.3 |
The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (application crash) via a large leng
|
19-09-2017 - 01:32 | 06-06-2011 - 19:55 | |
CVE-2011-2175 | 4.3 |
Integer underflow in the visual_read function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a malformed Visual Networks file that triggers a he
|
19-09-2017 - 01:32 | 06-06-2011 - 19:55 | |
CVE-2011-1139 | 4.3 |
wiretap/pcapng.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (application crash) via a pcap-ng file that contains a large packet-length field.
|
19-09-2017 - 01:32 | 03-03-2011 - 01:00 | |
CVE-2011-0445 | 5.0 |
The ASN.1 BER dissector in Wireshark 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (assertion failure) via crafted packets, as demonstrated by fuzz-2010-12-30-28473.pcap.
|
19-09-2017 - 01:32 | 13-01-2011 - 01:00 | |
CVE-2011-1140 | 4.3 |
Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recurs
|
19-09-2017 - 01:32 | 03-03-2011 - 01:00 | |
CVE-2011-1138 | 4.3 |
Off-by-one error in the dissect_6lowpan_iphc function in packet-6lowpan.c in Wireshark 1.4.0 through 1.4.3 on 32-bit platforms allows remote attackers to cause a denial of service (application crash) via a malformed 6LoWPAN IPv6 packet.
|
19-09-2017 - 01:32 | 03-03-2011 - 01:00 | |
CVE-2011-1141 | 4.3 |
epan/dissectors/packet-ldap.c in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (memory consumption) via (1) a long LDAP filter string or (2) an LDAP filter string containing many e
|
19-09-2017 - 01:32 | 03-03-2011 - 01:00 | |
CVE-2011-0538 | 6.8 |
Wireshark 1.2.0 through 1.2.14, 1.4.0 through 1.4.3, and 1.5.0 frees an uninitialized pointer during processing of a .pcap file in the pcap-ng format, which allows remote attackers to cause a denial of service (memory corruption) or possibly have uns
|
19-09-2017 - 01:32 | 08-02-2011 - 22:00 | |
CVE-2011-1143 | 4.3 |
epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark before 1.4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted .pcap file. Per: http://cwe.mitre.org/data/definit
|
19-09-2017 - 01:32 | 03-03-2011 - 01:00 | |
CVE-2010-4301 | 5.0 |
epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted ZCL packet, related to Discover Attributes.
|
19-09-2017 - 01:31 | 26-11-2010 - 19:00 | |
CVE-2010-4538 | 9.3 |
Buffer overflow in the sect_enttec_dmx_da function in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ENTTEC DMX packet with
|
19-09-2017 - 01:31 | 07-01-2011 - 19:00 | |
CVE-2010-4300 | 7.5 |
Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (crash) and possibly
|
19-09-2017 - 01:31 | 26-11-2010 - 19:00 | |
CVE-2010-2285 | 3.3 |
The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors. Per: http://cwe.mitre.org/data/definitions/476.html
'CWE-476: NU
|
19-09-2017 - 01:31 | 15-06-2010 - 14:04 | |
CVE-2010-2993 | 5.0 |
The IPMI dissector in Wireshark 1.2.0 through 1.2.9 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
|
19-09-2017 - 01:31 | 13-08-2010 - 18:43 | |
CVE-2010-2284 | 8.3 |
Buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.
|
19-09-2017 - 01:31 | 15-06-2010 - 14:04 | |
CVE-2010-2992 | 5.0 |
packet-gsm_a_rr.c in the GSM A RR dissector in Wireshark 1.2.2 through 1.2.9 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger a NULL pointer dereference.
|
19-09-2017 - 01:31 | 13-08-2010 - 18:43 | |
CVE-2010-2283 | 3.3 |
The SMB dissector in Wireshark 0.99.6 through 1.0.13, and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors. Per: http://cwe.mitre.org/data/definitions/476.html
'CWE-476: NULL P
|
19-09-2017 - 01:31 | 15-06-2010 - 14:04 | |
CVE-2010-2287 | 8.3 |
Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.
|
19-09-2017 - 01:31 | 15-06-2010 - 14:04 | |
CVE-2010-3445 | 5.0 |
Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 allows remote attackers to cause a denial of service (NULL pointer derefe
|
19-09-2017 - 01:31 | 26-11-2010 - 19:00 | |
CVE-2010-2995 | 10.0 |
The SigComp Universal Decompressor Virtual Machine (UDVM) in Wireshark 0.10.8 through 1.0.14 and 1.2.0 through 1.2.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to sigcomp-udvm.
|
19-09-2017 - 01:31 | 13-08-2010 - 18:43 | |
CVE-2010-3133 | 9.3 |
Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly
|
19-09-2017 - 01:31 | 26-08-2010 - 18:36 | |
CVE-2010-2994 | 10.0 |
Stack-based buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.14 and 1.2.0 through 1.2.9 has unknown impact and remote attack vectors. NOTE: this issue exists because of a CVE-2010-2284 regression.
|
19-09-2017 - 01:31 | 13-08-2010 - 18:43 | |
CVE-2010-2286 | 3.3 |
The SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.7 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
|
19-09-2017 - 01:31 | 15-06-2010 - 14:04 | |
CVE-2011-0444 | 10.0 |
Buffer overflow in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) in Wireshark 1.2.0 through 1.2.13 and 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number
|
19-09-2017 - 01:31 | 13-01-2011 - 01:00 | |
CVE-2010-1455 | 4.3 |
The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0 through 1.2.7 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed packet trace file.
|
19-09-2017 - 01:30 | 12-05-2010 - 11:46 | |
CVE-2010-0304 | 7.5 |
Multiple buffer overflows in the LWRES dissector in Wireshark 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allow remote attackers to cause a denial of service (crash) via a malformed packet, as demonstrated using a stack-based buffer overflow to the
|
19-09-2017 - 01:30 | 03-02-2010 - 18:30 | |
CVE-2009-4376 | 9.3 |
Buffer overflow in the daintree_sna_read function in the Daintree SNA file parser in Wireshark 1.2.0 through 1.2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet.
|
19-09-2017 - 01:29 | 21-12-2009 - 21:30 | |
CVE-2009-3829 | 9.3 |
Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability."
|
19-09-2017 - 01:29 | 30-10-2009 - 20:30 | |
CVE-2009-4378 | 4.3 |
The IPMI dissector in Wireshark 1.2.0 through 1.2.4 on Windows allows remote attackers to cause a denial of service (crash) via a crafted packet, related to "formatting a date/time using strftime."
|
19-09-2017 - 01:29 | 21-12-2009 - 21:30 | |
CVE-2009-3241 | 7.8 |
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
|
19-09-2017 - 01:29 | 18-09-2009 - 10:30 | |
CVE-2009-2563 | 7.1 |
Unspecified vulnerability in the Infiniband dissector in Wireshark 1.0.6 through 1.2.0, when running on unspecified platforms, allows remote attackers to cause a denial of service (crash) via unknown vectors.
|
19-09-2017 - 01:29 | 21-07-2009 - 17:30 | |
CVE-2009-2560 | 5.0 |
Multiple unspecified vulnerabilities in Wireshark 1.2.0 allow remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace and is processed by the (1) Bluetooth L2CAP, (2) RADIUS, or (3) MIOP diss
|
19-09-2017 - 01:29 | 21-07-2009 - 17:30 | |
CVE-2009-2562 | 5.0 |
Unspecified vulnerability in the AFS dissector in Wireshark 0.9.2 through 1.2.0 allows remote attackers to cause a denial of service (crash) via unknown vectors.
|
19-09-2017 - 01:29 | 21-07-2009 - 17:30 | |
CVE-2009-3242 | 5.0 |
Unspecified vulnerability in packet.c in the GSM A RR dissector in Wireshark 1.2.0 and 1.2.1 allows remote attackers to cause a denial of service (application crash) via unknown vectors related to "an uninitialized dissector handle," which triggers a
|
19-09-2017 - 01:29 | 18-09-2009 - 10:30 | |
CVE-2009-3549 | 5.0 |
packet-paltalk.c in the Paltalk dissector in Wireshark 1.2.0 through 1.2.2, on SPARC and certain other platforms, allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace.
|
19-09-2017 - 01:29 | 30-10-2009 - 20:30 | |
CVE-2009-3243 | 5.0 |
Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and 1.2.1, when running on Windows, allows remote attackers to cause a denial of service (application crash) via unknown vectors related to TLS 1.2 conversations.
|
19-09-2017 - 01:29 | 18-09-2009 - 10:30 | |
CVE-2009-2559 | 5.0 |
Buffer overflow in the IPMI dissector in Wireshark 1.2.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an array index error. NOTE: some of these details are obtained from third party information.
|
19-09-2017 - 01:29 | 21-07-2009 - 17:30 | |
CVE-2009-2561 | 5.0 |
Unspecified vulnerability in the sFlow dissector in Wireshark 1.2.0 allows remote attackers to cause a denial of service (CPU and memory consumption) via unspecified vectors.
|
19-09-2017 - 01:29 | 21-07-2009 - 17:30 |