CVSS: 9.8EPSS: 2%CPEs: 19EXPL: 0CVE-2011-0713 – Wireshark: heap-based buffer overflow when reading malformed Nokia DCT3 phone signalling traces
https://notcve.org/view.php?id=CVE-2011-0713
03 Mar 2011 — Heap-based buffer overflow in wiretap/dct3trace.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long record in a Nokia DCT3 trace file. Desobordamiento de buffer en memoria dinámica en wiretap/dct3trace.c de Wireshark 1.2.0 hasta la versión 1.2.14 y 1.4.0 hasta la 1.4.3. Permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente ten... • http://anonsvn.wireshark.org/viewvc?view=rev&revision=35953 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 6.5EPSS: 13%CPEs: 45EXPL: 1CVE-2011-1143 – Wireshark 1.4.3 - NTLMSSP Null Pointer Dereference Denial of Service
https://notcve.org/view.php?id=CVE-2011-1143
03 Mar 2011 — epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark before 1.4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted .pcap file. epan/dissectors/packet-ntlmssp.c del NTLMSSP dissector de Wireshark en versiones anteriores a la 1.4.4 permite a atacantes remotos provocar una denegación de servicio (resolución de puntero NULL y caída de la aplicación) a través de un fichero .pcap modificado. • https://www.exploit-db.com/exploits/35432 • CWE-476: NULL Pointer Dereference •
CVSS: 9.8EPSS: 29%CPEs: 20EXPL: 3CVE-2011-0538 – Wireshark 1.4.3 - '.pcap' Memory Corruption
https://notcve.org/view.php?id=CVE-2011-0538
08 Feb 2011 — Wireshark 1.2.0 through 1.2.14, 1.4.0 through 1.4.3, and 1.5.0 frees an uninitialized pointer during processing of a .pcap file in the pcap-ng format, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed file. Wireshark versiones 1.2.0 hasta 1.2.14, versiones 1.4.0 hasta 1.4.3 y versiones 1.5.0, libera un puntero no inicializado durante el procesamiento de un archivo .pcap en el formato pcap-ng, que permite a los atacantes r... • https://www.exploit-db.com/exploits/35314 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 5%CPEs: 18EXPL: 0CVE-2011-0444 – wireshark: buffer overflow in MAC-LTE disector (upstream bug #5530)
https://notcve.org/view.php?id=CVE-2011-0444
12 Jan 2011 — Buffer overflow in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) in Wireshark 1.2.0 through 1.2.13 and 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of RARs. Desbordamiento de búfer en el disector MAC-LTE (epan/dissectors/packet-mac-lte.c) en Wireshark v1.2.0 hasta v1.2.13 y v1.4.0 hasta v1.4.2 permite a atacantes remotos causar una denegación de servicio (caída) y, posiblemente, ejecutar código de su elecci... • http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053650.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2011-0445
https://notcve.org/view.php?id=CVE-2011-0445
12 Jan 2011 — The ASN.1 BER dissector in Wireshark 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (assertion failure) via crafted packets, as demonstrated by fuzz-2010-12-30-28473.pcap. El disector de ASN.1 BER en Wireshark v1.4.0 hasta v1.4.2 permite a atacantes remotos provocar una denegación de servicio (error de aserción) a través de los paquetes manipulados, como lo demuestra fuzz-2010-12-30-28473.pcap. • http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053650.html • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 62%CPEs: 1EXPL: 2CVE-2010-4538 – Wireshark - ENTTEC DMX Data RLE Buffer Overflow
https://notcve.org/view.php?id=CVE-2010-4538
07 Jan 2011 — Buffer overflow in the sect_enttec_dmx_da function in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ENTTEC DMX packet with Run Length Encoding (RLE) compression. El desbordamiento de búfer en la función sect_enttec_dmx_da en el archivo epan/dissectors/packet-enttec.c en Wireshark versión 1.4.2, permite a los atacantes remotos causar una denegación de servicio (bloqueo de aplicación)... • https://www.exploit-db.com/exploits/15898 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 10%CPEs: 15EXPL: 2CVE-2010-4300 – Wireshark - LDSS Dissector Buffer Overflow
https://notcve.org/view.php?id=CVE-2010-4300
26 Nov 2010 — Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an LDSS packet with a long digest line that triggers memory corruption. Desbordamiento de búfer basado en memoria dinámica en la función dissect_ldss_transfer (epan/dissectors/packet-ldss.c) en el disector LDSS en Wireshark v1.2.0 has... • https://www.exploit-db.com/exploits/15676 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •
CVSS: 7.5EPSS: 6%CPEs: 2EXPL: 2CVE-2010-4301 – Wireshark - ZigBee ZCL Dissector Infinite Loop Denial of Service
https://notcve.org/view.php?id=CVE-2010-4301
26 Nov 2010 — epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted ZCL packet, related to Discover Attributes. epan/dissectors/packet-zbee-zcl.c en el disector de ZigBee ZCL en Wireshark v1.4.0 hasta v1.4.1 permite a atacantes remotos provocar una denegación de servicio (bucle infinito) a través de un paquete ZCL manipulado, relacionado con Discover Attributes. • https://www.exploit-db.com/exploits/15973 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 3%CPEs: 13EXPL: 1CVE-2010-3445 – wireshark: stack overflow in BER dissector
https://notcve.org/view.php?id=CVE-2010-3445
26 Nov 2010 — Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a long string in an unknown ASN.1/BER encoded packet, as demonstrated using SNMP. Vulnerabilidad de consumo de pila en la función dissect_ber_unknown en pan/dissectors/packet-ber.c en el disector BER en Wireshark v1.4.x anterior a v1.4.1 y v... • http://archives.neohapsis.com/archives/bugtraq/2010-09/0088.html • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 2%CPEs: 31EXPL: 2CVE-2010-3133 – Wireshark 1.2.10 - 'airpcap.dll' DLL Hijacking
https://notcve.org/view.php?id=CVE-2010-3133
26 Aug 2010 — Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark. Una vulnerabilidad de ruta de búsqueda no confiable en Wireshark versiones 0.8.4 hasta 1.0.15 y versiones 1.2.0 hasta 1.2.10 permite a los usuarios locales, y posibl... • https://www.exploit-db.com/exploits/14721 •