CVSS: 6.5EPSS: 1%CPEs: 25EXPL: 2CVE-2011-2175 – wireshark: Heap-based buffer over-read in Visual Networks dissector
https://notcve.org/view.php?id=CVE-2011-2175
06 Jun 2011 — Integer underflow in the visual_read function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a malformed Visual Networks file that triggers a heap-based buffer over-read. Desbordamiento de enteros en la función visual_read en wiretap/visual.c de Wireshark v1.2.x con anterioridad a v1.2.17 y v1.4.x con anterioridad a v1.4.7 permite a atacantes remotos provocar una denegación de servicio ( caída de la apl... • http://anonsvn.wireshark.org/viewvc?view=revision&revision=37128 • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 2%CPEs: 21EXPL: 3CVE-2011-1590 – Wireshark: Use-after-free causes heap-based buffer overflow in X.509if dissector
https://notcve.org/view.php?id=CVE-2011-1590
29 Apr 2011 — The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file. El disector X.509if en Wireshark v1.2.x antes de v1.2.16 y v1.4.x antes de v1.4.5 no inicializa correctamente ciertas variables globales, lo que permite a atacantes remotos provocar una denegación de servicio (Mediante caida de la aplicación) a través de un archivo pcap deb... • http://anonsvn.wireshark.org/viewvc?revision=36608&view=revision • CWE-122: Heap-based Buffer Overflow CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 82%CPEs: 5EXPL: 8CVE-2011-1591 – Wireshark 1.4.4 - DECT Dissector Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2011-1591
29 Apr 2011 — Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted .pcap file. Desbordamiento de búfer basado en pila en el disector DECT en epan/dissectors/packet-dect.c en Wireshark v1.4.x antes de v1.4.5 permite a atacantes remotos ejecutar código arbitrario mediante un archivo pcap debidamente modificado. • https://www.exploit-db.com/exploits/18145 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 1%CPEs: 6EXPL: 3CVE-2011-1592
https://notcve.org/view.php?id=CVE-2011-1592
29 Apr 2011 — The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file. El disector de NFS en epan/dissectors/packet-nfs.c en Wireshark v1.4.x antes de v1.4.5 en Windows utiliza un tipo de dato entero incorrecto durante la decodificación de las llamadas SETCLIENTID, lo que permite a atacantes remotos provocar u... • http://anonsvn.wireshark.org/viewvc?revision=34115&view=revision • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 0%CPEs: 21EXPL: 0CVE-2011-1142
https://notcve.org/view.php?id=CVE-2011-1142
03 Mar 2011 — Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-referential ASN.1 CHOICE values. Vulnerabilidad de agotamiento de pila en la función dissect_ber_choice del analizador BER de Wireshark 1.2.x hasta la versión 1.2.15 y 1.4.x hasta la 1.4.4. Puede permitier a atacantes remotos provocar una denegación de servicio (bu... • http://www.mandriva.com/security/advisories?name=MDVSA-2011:044 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 9.8EPSS: 29%CPEs: 20EXPL: 3CVE-2011-0538 – Wireshark 1.4.3 - '.pcap' Memory Corruption
https://notcve.org/view.php?id=CVE-2011-0538
08 Feb 2011 — Wireshark 1.2.0 through 1.2.14, 1.4.0 through 1.4.3, and 1.5.0 frees an uninitialized pointer during processing of a .pcap file in the pcap-ng format, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed file. Wireshark versiones 1.2.0 hasta 1.2.14, versiones 1.4.0 hasta 1.4.3 y versiones 1.5.0, libera un puntero no inicializado durante el procesamiento de un archivo .pcap en el formato pcap-ng, que permite a los atacantes r... • https://www.exploit-db.com/exploits/35314 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •