CVSS: 5.0EPSS: 0%CPEs: 11EXPL: 0CVE-2014-6423 – wireshark: MEGACO dissector infinite loop (wnpa-sec-2014-13)
https://notcve.org/view.php?id=CVE-2014-6423
The tvb_raw_text_add function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service (infinite loop) via an empty line. La función tvb_raw_text_add en epan/dissectors/packet-megaco.c en el diseccionador MEGACO en Wireshark 1.10.x anterior a 1.10.10 y 1.12.x anterior a 1.12.1 permite a atacantes remotos causar una denegación de servicio (bucle infinito) a través de una línea en blanco. • http://linux.oracle.com/errata/ELSA-2014-1676 http://linux.oracle.com/errata/ELSA-2014-1677 http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00033.html http://lists.opensuse.org/opensuse-updates/2014-09/msg00058.html http://rhn.redhat.com/errata/RHSA-2014-1676.html http://rhn.redhat.com/errata/RHSA-2014-1677.html http://secunia.com/advisories/60280 http://secunia.com/advisories/60578 http://secunia.com/advisories/61929 http://secunia.com/advisories/61933 http • CWE-399: Resource Management Errors CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 5.0EPSS: 0%CPEs: 11EXPL: 0CVE-2014-6424 – wireshark: Netflow dissector crash (wnpa-sec-2014-14)
https://notcve.org/view.php?id=CVE-2014-6424
The dissect_v9_v10_pdu_data function in epan/dissectors/packet-netflow.c in the Netflow dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 refers to incorrect offset and start variables, which allows remote attackers to cause a denial of service (uninitialized memory read and application crash) via a crafted packet. La función dissect_v9_v10_pdu_data en epan/dissectors/packet-netflow.c en el diseccionador Netflow en Wireshark 1.10.x anterior a 1.10.10 y 1.12.x anterior a 1.12.1 hace referencia a desplazamiento y variables de inicialización incorrectos, lo que permite a atacantes remotos causar una denegación de servicio (lectura de memoria no inicializada y caída de la aplicación) a través de un paquete malintencionado. • http://linux.oracle.com/errata/ELSA-2014-1676 http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00033.html http://lists.opensuse.org/opensuse-updates/2014-09/msg00058.html http://rhn.redhat.com/errata/RHSA-2014-1676.html http://secunia.com/advisories/60280 http://secunia.com/advisories/60578 http://secunia.com/advisories/61929 http://www.debian.org/security/2014/dsa-3049 http://www.wireshark.org/security/wnpa-sec-2014-14.html https://bugs.wireshark.org/bugzill • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2014-6425 – wireshark: CUPS dissector crash (wnpa-sec-2014-15)
https://notcve.org/view.php?id=CVE-2014-6425
The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups.c in the CUPS dissector in Wireshark 1.12.x before 1.12.1 allow remote attackers to cause a denial of service (buffer over-read and application crash) via a CUPS packet that lacks a trailing '\0' character. Las funciones (1) get_quoted_string y (2) get_unquoted_string en epan/dissectors/packet-cups.c en el diseccionador CUPS en Wireshark 1.10.x anterior a 1.10.10 y 1.12.x anterior a 1.12.1 permite a atacantes remotos causar una denegación de servicio (sobrelectura de buffer y caída de la aplicación) a través de un paquete CUPS que carece de un carácter '\0' final. • http://linux.oracle.com/errata/ELSA-2014-1676 http://linux.oracle.com/errata/ELSA-2014-1677 http://rhn.redhat.com/errata/RHSA-2014-1676.html http://rhn.redhat.com/errata/RHSA-2014-1677.html http://secunia.com/advisories/60280 http://secunia.com/advisories/61929 http://secunia.com/advisories/61933 http://www.wireshark.org/security/wnpa-sec-2014-15.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10353 https://code.wireshark.org/review/gitweb?p=wireshark.git% • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-125: Out-of-bounds Read •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2014-6426 – wireshark: HIP dissector infinite loop (wnpa-sec-2014-16)
https://notcve.org/view.php?id=CVE-2014-6426
The dissect_hip_tlv function in epan/dissectors/packet-hip.c in the HIP dissector in Wireshark 1.12.x before 1.12.1 does not properly handle a NULL tree, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. La función dissect_hip_tlv en epan/dissectors/packet-hip.c en el diseccionador HIP en Wireshark 1.12.x anterior a 1.12.1 no maneja adecuadamente un árbol nulo, lo que permite a atacantes remotos causar una denegación de servicio (bucle infinito) a través de un paquete manipulado. • http://linux.oracle.com/errata/ELSA-2014-1676 http://rhn.redhat.com/errata/RHSA-2014-1676.html http://secunia.com/advisories/60280 http://secunia.com/advisories/61929 http://www.wireshark.org/security/wnpa-sec-2014-16.html https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=d9e5021fe79973d00ddd8fcef0bbefbaae63dd0f https://access.redhat.com/security/cve/CVE-2014-6426 https://bugzilla.redhat.com/show_bug.cgi?id=1142606 • CWE-399: Resource Management Errors CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 5.0EPSS: 0%CPEs: 11EXPL: 0CVE-2014-6427 – wireshark: RTSP dissector crash (wnpa-sec-2014-17)
https://notcve.org/view.php?id=CVE-2014-6427
Off-by-one error in the is_rtsp_request_or_reply function in epan/dissectors/packet-rtsp.c in the RTSP dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service (application crash) via a crafted packet that triggers parsing of a token located one position beyond the current position. Error de superación de límite (off-by-one) en la función is_rtsp_request_or_reply en epan/dissectors/packet-rtsp.c en el diseccionador RTSP en Wireshark 1.10.x anterior a 1.10.10 y 1.12.x anterior a 1.12.1 permite a atacantes remotos causar una denegación de servicio (caída de la aplicación) a través de un paquete manipulado que provoca analizar un token localizado una posición más allá de la posición actual. • http://linux.oracle.com/errata/ELSA-2014-1676 http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00033.html http://lists.opensuse.org/opensuse-updates/2014-09/msg00058.html http://rhn.redhat.com/errata/RHSA-2014-1676.html http://secunia.com/advisories/60280 http://secunia.com/advisories/60578 http://secunia.com/advisories/61929 http://www.debian.org/security/2014/dsa-3049 http://www.wireshark.org/security/wnpa-sec-2014-17.html https://bugs.wireshark.org/bugzill • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •