Wireshark

Wireshark

680 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2016-7177

  • EPSS 0.56%
  • Published 09.09.2016 10:59:03
  • Last modified 12.04.2025 10:46:40

epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) vi...

5.9

CVE-2016-7176

  • EPSS 0.51%
  • Published 09.09.2016 10:59:01
  • Last modified 12.04.2025 10:46:40

epan/dissectors/packet-h225.c in the H.225 dissector in Wireshark 2.x before 2.0.6 calls snprintf with one of its input buffers as the output buffer, which allows remote attackers to cause a denial of service (copy overlap and application crash) via ...

5.9

CVE-2016-7175

  • EPSS 0.19%
  • Published 09.09.2016 10:59:00
  • Last modified 12.04.2025 10:46:40

epan/dissectors/packet-qnet6.c in the QNX6 QNET dissector in Wireshark 2.x before 2.0.6 mishandles MAC address data, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

5.9

CVE-2016-5359

  • EPSS 0.26%
  • Published 07.08.2016 16:59:14
  • Last modified 12.04.2025 10:46:40

epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 1.12.x before 1.12.12 mishandles offsets, which allows remote attackers to cause a denial of service (integer overflow and infinite loop) via a crafted packet.

5.9

CVE-2016-5358

  • EPSS 0.21%
  • Published 07.08.2016 16:59:13
  • Last modified 12.04.2025 10:46:40

epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the packet-header data type, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

5.9

CVE-2016-5357

  • EPSS 0.67%
  • Published 07.08.2016 16:59:12
  • Last modified 12.04.2025 10:46:40

wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

5.9

CVE-2016-5356

  • EPSS 0.87%
  • Published 07.08.2016 16:59:10
  • Last modified 12.04.2025 10:46:40

wiretap/cosine.c in the CoSine file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

5.9

CVE-2016-5355

  • EPSS 0.87%
  • Published 07.08.2016 16:59:09
  • Last modified 12.04.2025 10:46:40

wiretap/toshiba.c in the Toshiba file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

5.9

CVE-2016-5354

  • EPSS 0.36%
  • Published 07.08.2016 16:59:08
  • Last modified 12.04.2025 10:46:40

The USB subsystem in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles class types, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

5.9

CVE-2016-5353

  • EPSS 0.28%
  • Published 07.08.2016 16:59:06
  • Last modified 12.04.2025 10:46:40

epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the reserved C/T value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.