CVSS: 5.9EPSS: 0%CPEs: 7EXPL: 0CVE-2016-7176 – Debian Security Advisory 3671-1
https://notcve.org/view.php?id=CVE-2016-7176
09 Sep 2016 — epan/dissectors/packet-h225.c in the H.225 dissector in Wireshark 2.x before 2.0.6 calls snprintf with one of its input buffers as the output buffer, which allows remote attackers to cause a denial of service (copy overlap and application crash) via a crafted packet. epan/dissectors/packet-h225.c en el disector H.225 en Wireshark 2.x en versiones anteriores a 2.0.6 llama a snprintf con uno de sus búfer de entrada como si fuera un búfer de salida, lo que permite a atacantes remotos provocar una denegación de... • http://www.debian.org/security/2016/dsa-3671 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.9EPSS: 0%CPEs: 7EXPL: 0CVE-2016-7177 – Debian Security Advisory 3671-1
https://notcve.org/view.php?id=CVE-2016-7177
09 Sep 2016 — epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet. epan/dissectors/packet-catapult-dct2000.c en el disector Catapult DCT2000 en Wireshark 2.x en versiones anteriores a 2.0.6 no restringe el número de canales, lo que permite a atacantes remotos provocar una denegación de servicio (sobrelectura... • http://www.debian.org/security/2016/dsa-3671 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.9EPSS: 0%CPEs: 7EXPL: 0CVE-2016-7178 – Debian Security Advisory 3671-1
https://notcve.org/view.php?id=CVE-2016-7178
09 Sep 2016 — epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 2.x before 2.0.6 does not ensure that memory is allocated for certain data structures, which allows remote attackers to cause a denial of service (invalid write access and application crash) via a crafted packet. epan/dissectors/packet-umts_fp.c en el disector UMTS FP en Wireshark 2.x en versiones anteriores a 2.0.6 no asegura que la memoria sea asignada para ciertas estructuras de datos, lo que permite a atacantes remotos provocar una d... • http://www.debian.org/security/2016/dsa-3671 • CWE-787: Out-of-bounds Write •
CVSS: 5.9EPSS: 0%CPEs: 7EXPL: 0CVE-2016-7179 – Debian Security Advisory 3671-1
https://notcve.org/view.php?id=CVE-2016-7179
09 Sep 2016 — Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted packet. Desbordamiento del búfer basado en pila en epan/dissectors/packet-catapult-dct2000.c en el disector Catapult DCT2000 en Wireshark 2.x en versiones anteriores a 2.0.6 permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) a través de un paquete ma... • http://www.debian.org/security/2016/dsa-3671 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.9EPSS: 0%CPEs: 7EXPL: 0CVE-2016-7180 – Debian Security Advisory 3671-1
https://notcve.org/view.php?id=CVE-2016-7180
09 Sep 2016 — epan/dissectors/packet-ipmi-trace.c in the IPMI trace dissector in Wireshark 2.x before 2.0.6 does not properly consider whether a string is constant, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet. epan/dissectors/packet-ipmi-trace.c en el disector de trazo IPMI en Wireshark 2.x en versiones anteriores a 2.0.6 no considera adecuadamente cuándo una cadena es constante. lo que permite a atacantes remotos provocar una denegación de servic... • http://www.debian.org/security/2016/dsa-3671 • CWE-416: Use After Free •
CVSS: 5.9EPSS: 0%CPEs: 5EXPL: 0CVE-2016-5358
https://notcve.org/view.php?id=CVE-2016-5358
07 Aug 2016 — epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the packet-header data type, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. epan/dissectors/packet-pktap.c en el disector Ethernet en Wireshark 2.x en versiones anteriores a 2.0.4 no maneja correctamente el tipo de datos de paquetes de cabecera, lo que permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) a través de un paquet... • http://www.openwall.com/lists/oss-security/2016/06/09/3 • CWE-20: Improper Input Validation •
CVSS: 5.9EPSS: 0%CPEs: 4EXPL: 0CVE-2016-5352
https://notcve.org/view.php?id=CVE-2016-5352
07 Aug 2016 — epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 2.x before 2.0.4 mishandles certain length values, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. epan/crypt/airpdcap.c en el disector IEEE 802.11 en Wireshark 2.x en versiones anteriores a 2.0.4 no maneja correctamente ciertos valores de longitud, lo que permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) a través de un paquete manipulado. • http://www.openwall.com/lists/oss-security/2016/06/09/3 • CWE-125: Out-of-bounds Read •
CVSS: 5.9EPSS: 1%CPEs: 5EXPL: 1CVE-2016-6512 – Wireshark 2.0.0 < 2.0.4 - MMSE / WAP / WBXML / WSP Dissectors Denial of Service
https://notcve.org/view.php?id=CVE-2016-6512
06 Aug 2016 — epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an overflow check in the tvb_get_guintvar function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet, related to the MMSE, WAP, WBXML, and WSP dissectors. epan/dissectors/packet-wap.c in Wireshark 2.x en versiones anteriores a 2.0.5 omite una comprobación de desbordamiento en la función tvb_get_guintvar, lo que permite a atacantes remotos provocar una denegación de servicio (bucle infinito) a trav... • https://www.exploit-db.com/exploits/40195 • CWE-20: Improper Input Validation •
CVSS: 5.9EPSS: 2%CPEs: 5EXPL: 1CVE-2016-6503 – Wireshark 2.0.0 < 2.0.4 - CORBA IDL Dissectors Denial of Service
https://notcve.org/view.php?id=CVE-2016-6503
06 Aug 2016 — The CORBA IDL dissectors in Wireshark 2.x before 2.0.5 on 64-bit Windows platforms do not properly interact with Visual C++ compiler options, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. Los disectores CORBA IDL en Wireshark 2.x en versiones anteriores a 2.0.5 en plataformas Windows 64-bit no interactúa adecuadamente con opciones del compilador de Visual C++, lo que permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) a... • https://www.exploit-db.com/exploits/40196 • CWE-20: Improper Input Validation •
CVSS: 5.9EPSS: 0%CPEs: 5EXPL: 0CVE-2016-6513
https://notcve.org/view.php?id=CVE-2016-6513
06 Aug 2016 — epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 2.x before 2.0.5 does not restrict the recursion depth, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. epan/dissectors/packet-wbxml.c en el disector WBXML en Wireshark 2.x en versiones anteriores a 2.0.5 no restringe la profundidad de repercusión, lo que permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) a través de un paquete manipulado. • http://openwall.com/lists/oss-security/2016/07/28/3 • CWE-399: Resource Management Errors •