Wireshark

Wireshark

748 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 1.4%
  • Veröffentlicht 08.01.2019 23:29:00
  • Zuletzt bearbeitet 21.11.2024 04:45:23

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a get_t61_string length check.

Exploit
  • EPSS 0.77%
  • Veröffentlicht 08.01.2019 23:29:00
  • Zuletzt bearbeitet 21.11.2024 04:45:23

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in epan/dissectors/packet-isakmp.c by properly handling the case of a missing decryption data block.

Exploit
  • EPSS 0.95%
  • Veröffentlicht 08.01.2019 23:29:00
  • Zuletzt bearbeitet 21.11.2024 04:45:23

In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. This was addressed in epan/dissectors/packet-enip.c by changing the memory-management approach so that a use-after-free is avoided.

Exploit
  • EPSS 3.24%
  • Veröffentlicht 29.11.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:17

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.

Exploit
  • EPSS 4.16%
  • Veröffentlicht 29.11.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:18

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm....

Exploit
  • EPSS 1.44%
  • Veröffentlicht 29.11.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:18

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference.

Exploit
  • EPSS 1.41%
  • Veröffentlicht 29.11.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:18

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read.

Exploit
  • EPSS 1.44%
  • Veröffentlicht 29.11.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:18

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination.

Exploit
  • EPSS 17.7%
  • Veröffentlicht 29.11.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:18

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.

Exploit
  • EPSS 3.14%
  • Veröffentlicht 29.11.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:18

In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error.