CVSS: 7.5EPSS: 3%CPEs: 69EXPL: 0CVE-2007-6111 – wireshark mp3 and ncp flaws
https://notcve.org/view.php?id=CVE-2007-6111
23 Nov 2007 — Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) allow remote attackers to cause a denial of service (crash) via (1) a crafted MP3 file or (2) unspecified vectors to the NCP dissector. Múltiples vulnerabilidades no especificadas en Wireshark (formalmente Ethereal) que permiten que atacantes remotos provoquen una denegación de servicio (por caída) usando: (1) un fichero MP3 manipulado, o (2) vectores no especificados en el NCP dissector. Multiple buffer overflows and infinite loops were ... • http://bugs.gentoo.org/show_bug.cgi?id=199958 •
CVSS: 7.5EPSS: 2%CPEs: 45EXPL: 0CVE-2007-6120 – wireshark Bluetooth SDP dissector flaws
https://notcve.org/view.php?id=CVE-2007-6120
23 Nov 2007 — The Bluetooth SDP dissector Wireshark (formerly Ethereal) 0.99.2 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. El Bluetooth SDP dissector Wireshark (formalmente Ethereal), desde la versión 0.99.2 a la 0.99.6, permite que atacantes remotos provoquen una denegación de servicio(por bucle infinito) usando vectores desconocidos. Multiple buffer overflows and infinite loops were discovered in multiple dissector and parser components, including those for MP3 an... • http://bugs.gentoo.org/show_bug.cgi?id=199958 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 5%CPEs: 53EXPL: 0CVE-2006-1938 – Debian Linux Security Advisory 1049-1
https://notcve.org/view.php?id=CVE-2006-1938
25 Apr 2006 — Multiple unspecified vulnerabilities in Ethereal 0.8.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via the (1) Sniffer capture or (2) SMB PIPE dissector. Gerald Combs reported several vulnerabilities in ethereal, a popular network traffic analyser. • ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc •
CVSS: 9.8EPSS: 5%CPEs: 39EXPL: 0CVE-2005-3651 – iDEFENSE Security Advisory 2005-12-09.t
https://notcve.org/view.php?id=CVE-2005-3651
10 Dec 2005 — Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets. Remote exploitation of an input validation vulnerability in the OSPF protocol dissectors within Ethereal, as included in various vendors operating system distributions, could allow attackers to crash the vulnerable process or potentially execute arbitrary code. iDefense has confirmed ... • ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U •
CVSS: 7.5EPSS: 3%CPEs: 39EXPL: 0CVE-2005-3313 – Gentoo Linux Security Advisory 200510-25
https://notcve.org/view.php?id=CVE-2005-3313
31 Oct 2005 — The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service (infinite loop). Ethereal is vulnerable to numerous vulnerabilities, potentially resulting in the execution of arbitrary code or abnormal termination. Versions less than 0.10.13-r1 are affected. • ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U •
CVSS: 10.0EPSS: 3%CPEs: 1EXPL: 0CVE-2005-3184 – Gentoo Linux Security Advisory 200510-25
https://notcve.org/view.php?id=CVE-2005-3184
20 Oct 2005 — Buffer overflow vulnerability in the unicode_to_bytes in the Service Location Protocol (srvloc) dissector (packet-srvloc.c) in Ethereal allows remote attackers to execute arbitrary code via a srvloc packet with a modified length value. Ethereal is vulnerable to numerous vulnerabilities, potentially resulting in the execution of arbitrary code or abnormal termination. Versions less than 0.10.13-r1 are affected. • http://secunia.com/advisories/17254 •
CVSS: 7.5EPSS: 1%CPEs: 45EXPL: 0CVE-2005-2360 – Gentoo Linux Security Advisory 200507-27
https://notcve.org/view.php?id=CVE-2005-2360
28 Jul 2005 — Unknown vulnerability in the LDAP dissector in Ethereal 0.8.5 through 0.10.11 allows remote attackers to cause a denial of service (free static memory and application crash) via unknown attack vectors. Ethereal is vulnerable to numerous vulnerabilities potentially resulting in the execution of arbitrary code or abnormal termination. Versions less than 0.10.12 are affected. • http://secunia.com/advisories/16225 •
CVSS: 7.5EPSS: 1%CPEs: 34EXPL: 0CVE-2005-1456 – Gentoo Linux Security Advisory 200505-3
https://notcve.org/view.php?id=CVE-2005-1456
05 May 2005 — Multiple unknown vulnerabilities in the (1) DHCP and (2) Telnet dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (abort). Ethereal is vulnerable to numerous vulnerabilities potentially resulting in the execution of arbitrary code or abnormal termination. Versions less than 0.10.11 are affected. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000963 •
CVSS: 7.5EPSS: 1%CPEs: 35EXPL: 0CVE-2005-1464 – Gentoo Linux Security Advisory 200505-3
https://notcve.org/view.php?id=CVE-2005-1464
05 May 2005 — Multiple unknown vulnerabilities in the (1) KINK, (2) L2TP, (3) MGCP, (4) EIGRP, (5) DLSw, (6) MEGACO, (7) LMP, and (8) RSVP dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (infinite loop). Ethereal is vulnerable to numerous vulnerabilities potentially resulting in the execution of arbitrary code or abnormal termination. Versions less than 0.10.11 are affected. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000963 •
CVSS: 7.5EPSS: 1%CPEs: 34EXPL: 0CVE-2005-1465 – Gentoo Linux Security Advisory 200505-3
https://notcve.org/view.php?id=CVE-2005-1465
05 May 2005 — Unknown vulnerability in the NCP dissector in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (long loop). Ethereal is vulnerable to numerous vulnerabilities potentially resulting in the execution of arbitrary code or abnormal termination. Versions less than 0.10.11 are affected. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000963 •