Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): wireshark
- Search Type: Search All
- CPE Name Search: false
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2012-4049 |
epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet. Published: July 24, 2012; 3:55:03 PM -0400 |
V3.x:(not available) V2.0: 2.9 LOW |
CVE-2012-4048 |
The PPP dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted packet, as demonstrated by a usbmon dump. Published: July 24, 2012; 3:55:00 PM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2012-3826 |
Multiple integer underflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (loop) via vectors related to the R3 dissector, a different vulnerability than CVE-2012-2392. Published: June 30, 2012; 6:15:05 AM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2012-3825 |
Multiple integer overflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) BACapp and (2) Bluetooth HCI dissectors, a different vulnerability than CVE-2012-2392. Published: June 30, 2012; 6:15:05 AM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2012-2394 |
Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 on the SPARC and Itanium platforms does not properly perform data alignment for a certain structure member, which allows remote attackers to cause a denial of service (application crash) via a (1) ICMP or (2) ICMPv6 Echo Request packet. Published: June 30, 2012; 6:15:05 AM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2012-2393 |
epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 does not properly construct certain array data structures, which allows remote attackers to cause a denial of service (application crash) via a crafted packet that triggers incorrect memory allocation. Published: June 30, 2012; 6:15:05 AM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2012-2392 |
Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allows remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) ANSI MAP, (2) ASF, (3) IEEE 802.11, (4) IEEE 802.3, and (5) LTP dissectors. Published: June 30, 2012; 6:15:04 AM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2012-1596 |
The mp2t_process_fragmented_payload function in epan/dissectors/packet-mp2t.c in the MP2T dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (application crash) via a packet containing an invalid pointer value that triggers an incorrect memory-allocation attempt. Published: April 11, 2012; 6:39:26 AM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2012-1595 |
The pcap_process_pseudo_header function in wiretap/pcap-common.c in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (application crash) via a WTAP_ENCAP_ERF file containing an Extension or Multi-Channel header with an invalid pseudoheader size, related to the pcap and pcap-ng file parsers. Published: April 11, 2012; 6:39:26 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2012-1594 |
epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in Wireshark 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. Published: April 11, 2012; 6:39:26 AM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2012-1593 |
epan/dissectors/packet-ansi_a.c in the ANSI A dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet. Published: April 11, 2012; 6:39:26 AM -0400 |
V3.x:(not available) V2.0: 3.3 LOW |
CVE-2012-0068 |
The lanalyzer_read function in wiretap/lanalyzer.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a Novell capture file containing a record that is too small. Published: April 11, 2012; 6:39:25 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2012-0067 |
wiretap/iptrace.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in an AIX iptrace file. Published: April 11, 2012; 6:39:25 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2012-0066 |
Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a (1) Accellent 5Views (aka .5vw) file, (2) I4B trace file, or (3) NETMON 2 capture file. Published: April 11, 2012; 6:39:25 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2012-0043 |
Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a series of fragmented RLC packets. Published: April 11, 2012; 6:39:25 AM -0400 |
V3.x:(not available) V2.0: 5.8 MEDIUM |
CVE-2012-0042 |
Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet, related to epan/to_str.c. Published: April 11, 2012; 6:39:25 AM -0400 |
V3.x:(not available) V2.0: 2.9 LOW |
CVE-2012-0041 |
The dissect_packet function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a capture file, as demonstrated by an airopeek file. Published: April 11, 2012; 6:39:25 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2011-4102 |
Heap-based buffer overflow in the erf_read_header function in wiretap/erf.c in the ERF file parser in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (application crash) via a malformed file. Published: November 03, 2011; 11:55:01 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2011-4101 |
The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet. Published: November 03, 2011; 11:55:00 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2011-4100 |
The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.3 does not initialize a certain variable, which allows remote attackers to cause a denial of service (application crash) via a malformed packet. Published: November 03, 2011; 11:55:00 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |