Page 20 of 533 results (0.013 seconds)

CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value. En Wireshark 2.2.0 a 2.2.5, el disector DOF podría entrar en un bucle infinito, desencadenado por un paquete de inyección o un archivo de captura mal formado. Esto se trató en epan/dissectors/packet-dof.c mediante el uso de un tipo de datos íntegros diferentes y ajustando un valor devuelto. • http://www.securityfocus.com/bid/97634 http://www.securitytracker.com/id/1038262 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13453 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=6032b0fe5fc1176ab77e03e20765f95fbd21b19e https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=da53a90b6895e47e03c5de05edf84bd99d535fd8 https://security.gentoo.org/glsa/201706-12 https://www.wireshark.org/security/wnpa-sec-2017-17.html • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •

CVSS: 7.5EPSS: 0%CPEs: 19EXPL: 0

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the IMAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-imap.c by calculating a line's end correctly. En Wireshark 2.2.0 a 2.2.5 y 2.0.0 a 2.0.11, el disector IMAP podría caer, desencadenado por un paquete de inyección o un archivo de captura mal formado. Esto se trató en epan/dissectors/packet-imap.c calculando el final de una línea correctamente. • http://www.securityfocus.com/bid/97636 http://www.securitytracker.com/id/1038262 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13466 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=671e32820ab29d41d712cc8a472eab9b672684d9 https://lists.debian.org/debian-lts-announce/2019/01/msg00010.html https://security.gentoo.org/glsa/201706-12 https://www.wireshark.org/security/wnpa-sec-2017-12.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •

CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by adding a length check. En Wireshark 2.2.0 a 2.2.5 y 2.0.0 a 2.0.11, el disector WSP podría entrar en un bucle infinito, desencadenado por un paquete de inyección o un archivo de captura mal formado. Esto se trató en epan/dissectors/packet-wsp.c añadiendo un control de longitud. • http://www.securityfocus.com/bid/97628 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13581 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=f55cbcde2c8f74b652add4450b0592082eb6acff https://www.wireshark.org/security/wnpa-sec-2017-21.html • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •

CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-bgp.c by using a different integer data type. En Wireshark 2.2.0 a 2.2.5 y 2.0.0 a 2.0.11, el disector BGP podría entrar en un bucle infinito, desencadenado por un paquete de inyección o un archivo de captura mal formado. Esto se trató en epan/dissectors/packet-bgp.c mediante el uso de un tipo de datos íntegros diferente. • http://www.securityfocus.com/bid/97632 http://www.securitytracker.com/id/1038262 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13557 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=fa31f69b407436d0946f84baa0acdcc50962bf7a https://security.gentoo.org/glsa/201706-12 https://www.wireshark.org/security/wnpa-sec-2017-16.html • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •

CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation. En Wireshark 2.2.0 a 2.2.5 y 2.0.0 a 2.0.11, el disector WBXML podría entrar en un bucle infinito, desencadenado por un paquete de inyección o un archivo de captura mal formado. Esto se trató en epan/dissectors/packet-wbxml.c agregando validación de longitud. • http://www.securityfocus.com/bid/97633 http://www.securitytracker.com/id/1038262 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13477 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=2f322f66cbcca2fefdaa630494f9d6c97eb659b7 https://security.gentoo.org/glsa/201706-12 https://www.wireshark.org/security/wnpa-sec-2017-13.html • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •