Page 11 of 60 results (0.005 seconds)

CVSS: 5.0EPSS: 2%CPEs: 6EXPL: 0

CVE-2007-3389 – Wireshark crashes when inspecting HTTP traffic

https://notcve.org/view.php?id=CVE-2007-3389

Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload. Wireshark anterior a 0.99.6 permite a atacantes remotos provocar una denegación de servicio (caída) mediante una codificación manual por trozos (crafted chunked encoding) en una respuesta HTTP, posiblemente relacionado con un segmento de datos (payload) de longitud cero. • http://osvdb.org/37643 http://secunia.com/advisories/25833 http://secunia.com/advisories/25987 http://secunia.com/advisories/26004 http://secunia.com/advisories/26499 http://secunia.com/advisories/27592 http://secunia.com/advisories/28583 http://security.gentoo.org/glsa/glsa-200708-12.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:145 http://www.novell.com/linux/security/advisories/2007_15_sr.html http://www.redhat.com/support/errata/RHSA-2007-0709.html • CWE-20: Improper Input Validation •

CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 0

CVE-2007-3393 – Wireshark corrupts the stack when inspecting BOOTP traffic

https://notcve.org/view.php?id=CVE-2007-3393

Off-by-one error in the DHCP/BOOTP dissector in Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via crafted DHCP-over-DOCSIS packets. Error de superación de límite (off-by-one) en el disector DHCP/BOOTP de Wireshark anterior a 0.99.6 permite a atacantes remotos provocar una denegación de servicio (caída) mediante paquetes DHCP-over-DOCSIS manipulados de forma artesanal. • http://osvdb.org/37639 http://secunia.com/advisories/22588 http://secunia.com/advisories/25833 http://secunia.com/advisories/25877 http://secunia.com/advisories/25987 http://secunia.com/advisories/26004 http://secunia.com/advisories/26499 http://secunia.com/advisories/28583 http://security.gentoo.org/glsa/glsa-200708-12.xml http://www.debian.org/security/2007/dsa-1322 http://www.mandriva.com/security/advisories?name=MDKSA-2007:145 http://www.novell.com/linux/security& •

CVSS: 4.3EPSS: 1%CPEs: 13EXPL: 0

CVE-2007-0457 – Multiple Wireshark issues (CVE-2007-0457, CVE-2007-0458, CVE-2007-0459)

https://notcve.org/view.php?id=CVE-2007-0457

Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly Ethereal) 0.10.14 through 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors. Vulnerabilidad no especificada en el disector IEEE 802.11 en Wireshark (formalmente Ethereal) 0.10.14 hasta 0.99.4 permite a atacantes remotos provocar denegación de servicio (caida de aplicación) a través de vectores no especificados. • ftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.asc http://fedoranews.org/cms/node/2565 http://osvdb.org/33074 http://secunia.com/advisories/24011 http://secunia.com/advisories/24016 http://secunia.com/advisories/24025 http://secunia.com/advisories/24084 http://secunia.com/advisories/24515 http://secunia.com/advisories/24650 http://secunia.com/advisories/24970 http://securitytracker.com/id?1017581 http://support.avaya.com/elmodocs2/security/ASA-2007 •

CVSS: 5.0EPSS: 0%CPEs: 10EXPL: 0

CVE-2006-5595

https://notcve.org/view.php?id=CVE-2006-5595

Unspecified vulnerability in the AirPcap support in Wireshark (formerly Ethereal) 0.99.3 has unspecified attack vectors related to WEP key parsing. Vulnerabilidad sin especificar en el soporte AirPcap en Wireshark (anteriormente conocido como Ethereal) 0.99.3 tiene vectores de ataque sin especificar referido al analizador sintáctico WEP. • http://secunia.com/advisories/22590 http://www.securityfocus.com/bid/20762 http://www.wireshark.org/security/wnpa-sec-2006-03.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14787 •

CVSS: 5.0EPSS: 1%CPEs: 10EXPL: 0

CVE-2006-5469

https://notcve.org/view.php?id=CVE-2006-5469

Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ethereal) 0.10.11 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger a null dereference. Vulnerabilidad sin especificar en el diseccionador WBXML (antiguamente Ethereal)desde la versión 0.10.11 hasta la 0.99.3., permite a atacantes remotos causar la denegación de servicio (caída) mediante determinados vectores que disparen referencias nulas. • ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P http://secunia.com/advisories/22590 http://secunia.com/advisories/22672 http://secunia.com/advisories/22692 http://secunia.com/advisories/22797 http://secunia.com/advisories/22841 http://secunia.com/advisories/22929 http://secunia.com/advisories/23096 http://securitytracker.com/id?1017129 http://support.avaya.com/elmodocs2/security/ASA-2006-255.htm http://www.mandriva.com/security/advisories?name=MDKSA-2006:195&# •