CVSS: 10.0EPSS: 5%CPEs: 18EXPL: 0CVE-2011-0444 – wireshark: buffer overflow in MAC-LTE disector (upstream bug #5530)
https://notcve.org/view.php?id=CVE-2011-0444
12 Jan 2011 — Buffer overflow in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) in Wireshark 1.2.0 through 1.2.13 and 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of RARs. Desbordamiento de búfer en el disector MAC-LTE (epan/dissectors/packet-mac-lte.c) en Wireshark v1.2.0 hasta v1.2.13 y v1.4.0 hasta v1.4.2 permite a atacantes remotos causar una denegación de servicio (caída) y, posiblemente, ejecutar código de su elecci... • http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053650.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 3%CPEs: 13EXPL: 1CVE-2010-3445 – wireshark: stack overflow in BER dissector
https://notcve.org/view.php?id=CVE-2010-3445
26 Nov 2010 — Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a long string in an unknown ASN.1/BER encoded packet, as demonstrated using SNMP. Vulnerabilidad de consumo de pila en la función dissect_ber_unknown en pan/dissectors/packet-ber.c en el disector BER en Wireshark v1.4.x anterior a v1.4.1 y v... • http://archives.neohapsis.com/archives/bugtraq/2010-09/0088.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 10%CPEs: 15EXPL: 2CVE-2010-4300 – Wireshark - LDSS Dissector Buffer Overflow
https://notcve.org/view.php?id=CVE-2010-4300
26 Nov 2010 — Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an LDSS packet with a long digest line that triggers memory corruption. Desbordamiento de búfer basado en memoria dinámica en la función dissect_ldss_transfer (epan/dissectors/packet-ldss.c) en el disector LDSS en Wireshark v1.2.0 has... • https://www.exploit-db.com/exploits/15676 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 9.3EPSS: 2%CPEs: 31EXPL: 2CVE-2010-3133 – Wireshark 1.2.10 - 'airpcap.dll' DLL Hijacking
https://notcve.org/view.php?id=CVE-2010-3133
26 Aug 2010 — Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark. Una vulnerabilidad de ruta de búsqueda no confiable en Wireshark versiones 0.8.4 hasta 1.0.15 y versiones 1.2.0 hasta 1.2.10 permite a los usuarios locales, y posibl... • https://www.exploit-db.com/exploits/14721 •
CVSS: 7.5EPSS: 0%CPEs: 11EXPL: 0CVE-2010-2993
https://notcve.org/view.php?id=CVE-2010-2993
13 Aug 2010 — The IPMI dissector in Wireshark 1.2.0 through 1.2.9 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. El analizador IPMI de Wireshark v1.2.0 hasta la v1.2.9 permite a atacantes remotos provocar una denegación de servicio (bucle infinito) a través de vectores de ataque desconocidos. • http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 1%CPEs: 28EXPL: 0CVE-2010-2994
https://notcve.org/view.php?id=CVE-2010-2994
13 Aug 2010 — Stack-based buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.14 and 1.2.0 through 1.2.9 has unknown impact and remote attack vectors. NOTE: this issue exists because of a CVE-2010-2284 regression. Desbordamiento de buffer de pila en el componente "ASN.1 BER dissector" de Wireshark v0.10.13 hasta la versión v1.0.14 y v1.2.0 hasta la v1.2.9 tiene un impacto desconocido y vectores de ataque en remoto. NOTA: esta vulnerabilidad existe debido a la regresión de CVE-2010-2284. • http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 6%CPEs: 33EXPL: 0CVE-2010-2995 – wireshark: SigComp UDVM dissector buffer overruns
https://notcve.org/view.php?id=CVE-2010-2995
13 Aug 2010 — The SigComp Universal Decompressor Virtual Machine (UDVM) in Wireshark 0.10.8 through 1.0.14 and 1.2.0 through 1.2.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to sigcomp-udvm.c and an off-by-one error, which triggers a buffer overflow, different vulnerabilities than CVE-2010-2287. El Universal Decompressor Virtual Machine (UDVM) de SigComp en Wireshark versiones 0.10.8 hasta 1.0.14 y versiones 1.2.0 hasta 1.2.9, permite a los atacant... • http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 1%CPEs: 26EXPL: 0CVE-2010-2283 – wireshark: SMB dissector NULL pointer dereference
https://notcve.org/view.php?id=CVE-2010-2283
15 Jun 2010 — The SMB dissector in Wireshark 0.99.6 through 1.0.13, and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors. El disector de SMB en Wireshark v0.99.6 a v1.0.13, y v1.2.0 a 1.2.8 permite a atacantes remotos provocar una denegación de servicio (desreferencia a puntero nulo) a través de vectores desconocidos. • http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html • CWE-476: NULL Pointer Dereference •
CVSS: 9.8EPSS: 4%CPEs: 34EXPL: 0CVE-2010-2284 – wireshark: ASN.1 BER dissector stack overrun
https://notcve.org/view.php?id=CVE-2010-2284
15 Jun 2010 — Buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors. Desbordamiento de búfer en el analizador ASN.1 BER en Wireshark 0.10.13 a 1.0.13 y 1.2.0 a 1.2.8 tiene un impacto desconocido y vectores de ataque remotos. • http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 35EXPL: 0CVE-2010-2285
https://notcve.org/view.php?id=CVE-2010-2285
15 Jun 2010 — The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors. El disector de SMB PIPE en Wireshark v0.8.20 a 1.0.13 y v1.2.0 a v1.2.8 permite a atacantes remotos provocar una denegación de servicio (desreferencia de puntero nulo) a través de vectores desconocidos. • http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html •