National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:wireshark:wireshark:0.99.2
There are 63 matching records.
Displaying matches 41 through 60.
Vuln ID Summary CVSS Severity
CVE-2008-1072

The TFTP dissector in Wireshark (formerly Ethereal) 0.6.0 through 0.99.7, when running on Ubuntu 7.10, allows remote attackers to cause a denial of service (crash or memory consumption) via a malformed packet, possibly related to a Cairo library bug.

Published: February 28, 2008; 05:44:00 PM -05:00
    V2: 4.7 MEDIUM
CVE-2007-6450

The RPL dissector in Wireshark (formerly Ethereal) 0.9.8 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.

Published: December 19, 2007; 05:46:00 PM -05:00
    V2: 5.0 MEDIUM
CVE-2007-6451

Unspecified vulnerability in the CIP dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger allocation of large amounts of memory.

Published: December 19, 2007; 05:46:00 PM -05:00
    V2: 4.3 MEDIUM
CVE-2007-6111

Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) allow remote attackers to cause a denial of service (crash) via (1) a crafted MP3 file or (2) unspecified vectors to the NCP dissector.

Published: November 23, 2007; 03:46:00 PM -05:00
    V2: 7.1 HIGH
CVE-2007-6113

Integer signedness error in the DNP3 dissector in Wireshark (formerly Ethereal) 0.10.12 to 0.99.6 allows remote attackers to cause a denial of service (long loop) via a malformed DNP3 packet.

Published: November 23, 2007; 03:46:00 PM -05:00
    V2: 4.3 MEDIUM
CVE-2007-6114

Multiple buffer overflows in Wireshark (formerly Ethereal) 0.99.0 through 0.99.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) the SSL dissector or (2) the iSeries (OS/400) Communication trace file parser.

Published: November 23, 2007; 03:46:00 PM -05:00
    V2: 10.0 HIGH
CVE-2007-6117

Unspecified vulnerability in the HTTP dissector for Wireshark (formerly Ethereal) 0.10.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted chunked messages.

Published: November 23, 2007; 03:46:00 PM -05:00
    V2: 5.0 MEDIUM
CVE-2007-6118

The MEGACO dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (long loop and resource consumption) via unknown vectors.

Published: November 23, 2007; 03:46:00 PM -05:00
    V2: 7.8 HIGH
CVE-2007-6120

The Bluetooth SDP dissector Wireshark (formerly Ethereal) 0.99.2 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.

Published: November 23, 2007; 03:46:00 PM -05:00
    V2: 5.0 MEDIUM
CVE-2007-6121

Wireshark (formerly Ethereal) 0.8.16 to 0.99.6 allows remote attackers to cause a denial of service (crash) via a malformed RPC Portmap packet.

Published: November 23, 2007; 03:46:00 PM -05:00
    V2: 5.0 MEDIUM
CVE-2007-3389

Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload.

Published: June 25, 2007; 08:30:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2007-3392

Wireshark before 0.99.6 allows remote attackers to cause a denial of service via malformed (1) SSL or (2) MMS packets that trigger an infinite loop.

Published: June 25, 2007; 08:30:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2007-3393

Off-by-one error in the DHCP/BOOTP dissector in Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via crafted DHCP-over-DOCSIS packets.

Published: June 25, 2007; 08:30:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2007-0457

Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly Ethereal) 0.10.14 through 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

Published: February 02, 2007; 03:28:00 PM -05:00
    V2: 4.3 MEDIUM
CVE-2007-0459

packet-tcp.c in the TCP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.4 allows remote attackers to cause a denial of service (application crash or hang) via fragmented HTTP packets.

Published: February 02, 2007; 03:28:00 PM -05:00
    V2: 5.0 MEDIUM
CVE-2006-4574

Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length values.

Published: October 27, 2006; 08:07:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2006-5469

Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ethereal) 0.10.11 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger a null dereference.

Published: October 27, 2006; 08:07:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2006-5595

Unspecified vulnerability in the AirPcap support in Wireshark (formerly Ethereal) 0.99.3 has unspecified attack vectors related to WEP key parsing.

Published: October 27, 2006; 08:07:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2006-4805

epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a zero length value when it is decoded.

Published: October 27, 2006; 07:07:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2006-4330

Unspecified vulnerability in the SCSI dissector in Wireshark (formerly Ethereal) 0.99.2 allows remote attackers to cause a denial of service (crash) via unspecified vectors.

Published: August 24, 2006; 04:04:00 PM -04:00
    V2: 4.3 MEDIUM