Wireshark

Wireshark

680 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.3

CVE-2010-2287

  • EPSS 3.04%
  • Published 15.06.2010 14:04:26
  • Last modified 11.04.2025 00:51:21

Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.

4.3

CVE-2010-1455

  • EPSS 0.96%
  • Published 12.05.2010 11:46:31
  • Last modified 11.04.2025 00:51:21

The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0 through 1.2.7 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed packet trace file.

7.5

CVE-2010-0304

Exploit
  • EPSS 77.12%
  • Published 03.02.2010 18:30:00
  • Last modified 11.04.2025 00:51:21

Multiple buffer overflows in the LWRES dissector in Wireshark 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allow remote attackers to cause a denial of service (crash) via a malformed packet, as demonstrated using a stack-based buffer overflow to the...

9.3

CVE-2009-4376

Exploit
  • EPSS 3.14%
  • Published 21.12.2009 21:30:00
  • Last modified 09.04.2025 00:30:58

Buffer overflow in the daintree_sna_read function in the Daintree SNA file parser in Wireshark 1.2.0 through 1.2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet.

4.3

CVE-2009-4377

Exploit
  • EPSS 1.51%
  • Published 21.12.2009 21:30:00
  • Last modified 09.04.2025 00:30:58

The (1) SMB and (2) SMB2 dissectors in Wireshark 0.9.0 through 1.2.4 allow remote attackers to cause a denial of service (crash) via a crafted packet that triggers a NULL pointer dereference, as demonstrated by fuzz-2009-12-07-11141.pcap.

4.3

CVE-2009-4378

  • EPSS 0.54%
  • Published 21.12.2009 21:30:00
  • Last modified 09.04.2025 00:30:58

The IPMI dissector in Wireshark 1.2.0 through 1.2.4 on Windows allows remote attackers to cause a denial of service (crash) via a crafted packet, related to "formatting a date/time using strftime."

5

CVE-2009-3549

  • EPSS 1.3%
  • Published 30.10.2009 20:30:00
  • Last modified 09.04.2025 00:30:58

packet-paltalk.c in the Paltalk dissector in Wireshark 1.2.0 through 1.2.2, on SPARC and certain other platforms, allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace.

4.3

CVE-2009-3550

  • EPSS 1.73%
  • Published 30.10.2009 20:30:00
  • Last modified 09.04.2025 00:30:58

The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file that records a malformed packet trace. NOTE: some of ...

5

CVE-2009-3551

  • EPSS 0.7%
  • Published 30.10.2009 20:30:00
  • Last modified 09.04.2025 00:30:58

Off-by-one error in the dissect_negprot_response function in packet-smb.c in the SMB dissector in Wireshark 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace....

9.3

CVE-2009-3829

  • EPSS 5.59%
  • Published 30.10.2009 20:30:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability."