CVSS: 7.5EPSS: 1%CPEs: 35EXPL: 0CVE-2010-1455 – wireshark: DOCSIS dissector crash
https://notcve.org/view.php?id=CVE-2010-1455
11 May 2010 — The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0 through 1.2.7 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed packet trace file. El disector de DOCSIS en Wireshark v0.9.6 hasta v1.2.0 y v1.0.12 hasta v1.2.7 permite a atacantes remotos ayudados por el usuario provocar una denegación de servicio (cuelgue de aplicación) a través de un archivo de traza de paquetes mal formado. This advisory updates wireshark to the latest version(s), fixing... • http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 2%CPEs: 53EXPL: 0CVE-2007-6121 – wireshark RPC Portmap flaws
https://notcve.org/view.php?id=CVE-2007-6121
23 Nov 2007 — Wireshark (formerly Ethereal) 0.8.16 to 0.99.6 allows remote attackers to cause a denial of service (crash) via a malformed RPC Portmap packet. Wireshark (formalmente Ethereal), desde la versión 0.8.16 a la 0.99.6, permite que atacantes remotos provoquen una denegación de servicio (por caída) usando paquetes RPC Portmap mal formados. Multiple buffer overflows and infinite loops were discovered in multiple dissector and parser components, including those for MP3 and NCP (CVE-2007-6111), PPP (CVE-2007-6112), ... • http://bugs.gentoo.org/show_bug.cgi?id=199958 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 5%CPEs: 12EXPL: 0CVE-2007-6118 – wireshark MEGACO dissector flaws
https://notcve.org/view.php?id=CVE-2007-6118
23 Nov 2007 — The MEGACO dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (long loop and resource consumption) via unknown vectors. El MEGACO dissector en Wireshark (formalmente Ethereal), desde la versión 0.9.14 a la 0.99.6, permite que atacantes remotos provoquen una denegación de servicio (por bucle de larga duración y consumo de recursos) usando vectores desconocidos. Multiple buffer overflows and infinite loops were discovered in multiple dissector and ... • http://bugs.gentoo.org/show_bug.cgi?id=199958 •
CVSS: 7.5EPSS: 3%CPEs: 69EXPL: 0CVE-2007-6111 – wireshark mp3 and ncp flaws
https://notcve.org/view.php?id=CVE-2007-6111
23 Nov 2007 — Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) allow remote attackers to cause a denial of service (crash) via (1) a crafted MP3 file or (2) unspecified vectors to the NCP dissector. Múltiples vulnerabilidades no especificadas en Wireshark (formalmente Ethereal) que permiten que atacantes remotos provoquen una denegación de servicio (por caída) usando: (1) un fichero MP3 manipulado, o (2) vectores no especificados en el NCP dissector. Multiple buffer overflows and infinite loops were ... • http://bugs.gentoo.org/show_bug.cgi?id=199958 •
CVSS: 7.5EPSS: 2%CPEs: 45EXPL: 0CVE-2007-6120 – wireshark Bluetooth SDP dissector flaws
https://notcve.org/view.php?id=CVE-2007-6120
23 Nov 2007 — The Bluetooth SDP dissector Wireshark (formerly Ethereal) 0.99.2 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. El Bluetooth SDP dissector Wireshark (formalmente Ethereal), desde la versión 0.99.2 a la 0.99.6, permite que atacantes remotos provoquen una denegación de servicio(por bucle infinito) usando vectores desconocidos. Multiple buffer overflows and infinite loops were discovered in multiple dissector and parser components, including those for MP3 an... • http://bugs.gentoo.org/show_bug.cgi?id=199958 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 7%CPEs: 31EXPL: 0CVE-2006-3629 – rPSA-2006-0132-1.txt
https://notcve.org/view.php?id=CVE-2006-3629
18 Jul 2006 — Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9.4 to 0.99.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. Vulnerabilidad no especificada en el disector MOUNT en Wireshark (también conocido como Ethereal) 0.9.4 a 0.99.0 permite a atacantes remotos provocar denegación de servicio (consumo de memoria) a través de vectores no especificados. All versions of the ethereal and tethereal packages contain vulnerabilities in packet d... • ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P •
CVSS: 10.0EPSS: 5%CPEs: 23EXPL: 0CVE-2006-3628 – rPSA-2006-0132-1.txt
https://notcve.org/view.php?id=CVE-2006-3628
18 Jul 2006 — Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors. Múltiples vulnerabilidades de formato de cadena en Wireshark (atmbién conocido como Ethereal) 0.10.x a 0.99.0 permite a atacantes remotos provocar denegación de servicio y posiblemente ejecutar código de su eleccción a través de los disectores (1) ANSI MAP... • ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P • CWE-134: Use of Externally-Controlled Format String •
CVSS: 10.0EPSS: 5%CPEs: 41EXPL: 0CVE-2006-3632 – rPSA-2006-0132-1.txt
https://notcve.org/view.php?id=CVE-2006-3632
18 Jul 2006 — Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector. Desbordamiento de búfer en Wireshark (también conocido como Ethereal) 0.8.16 hasta 0.99.0 permite a atacantes remotos provocar una denegación de servicio y posiblemente ejecutar código de su elección a través del analizador de protocolo NFS. All versions of the ethereal and tethereal packages contain vulnerabilities in packet dissector m... • ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 3%CPEs: 17EXPL: 0CVE-2006-1932 – Debian Linux Security Advisory 1049-1
https://notcve.org/view.php?id=CVE-2006-1932
25 Apr 2006 — Off-by-one error in the OID printing routine in Ethereal 0.10.x up to 0.10.14 has unknown impact and remote attack vectors. Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. • ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc •
CVSS: 7.5EPSS: 5%CPEs: 16EXPL: 0CVE-2006-1940 – Debian Linux Security Advisory 1049-1
https://notcve.org/view.php?id=CVE-2006-1940
25 Apr 2006 — Unspecified vulnerability in Ethereal 0.10.4 up to 0.10.14 allows remote attackers to cause a denial of service (abort) via the SNDCP dissector. Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. • ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc •