Wireshark

Wireshark

685 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2016-5357

  • EPSS 0.67%
  • Veröffentlicht 07.08.2016 16:59:12
  • Zuletzt bearbeitet 12.04.2025 10:46:40

wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

5.9

CVE-2016-5356

  • EPSS 0.87%
  • Veröffentlicht 07.08.2016 16:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

wiretap/cosine.c in the CoSine file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

5.9

CVE-2016-5355

  • EPSS 0.87%
  • Veröffentlicht 07.08.2016 16:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

wiretap/toshiba.c in the Toshiba file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

5.9

CVE-2016-5354

  • EPSS 0.36%
  • Veröffentlicht 07.08.2016 16:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The USB subsystem in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles class types, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

5.9

CVE-2016-5353

  • EPSS 0.28%
  • Veröffentlicht 07.08.2016 16:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the reserved C/T value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

5.9

CVE-2016-5352

  • EPSS 0.26%
  • Veröffentlicht 07.08.2016 16:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 2.x before 2.0.4 mishandles certain length values, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

5.9

CVE-2016-5351

Exploit
  • EPSS 0.28%
  • Veröffentlicht 07.08.2016 16:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the lack of an EAPOL_RSN_KEY, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

7.5

CVE-2016-5350

  • EPSS 0.36%
  • Veröffentlicht 07.08.2016 16:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

epan/dissectors/packet-dcerpc-spoolss.c in the SPOOLS component in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles unexpected offsets, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

5.9

CVE-2016-6513

  • EPSS 0.14%
  • Veröffentlicht 06.08.2016 23:59:13
  • Zuletzt bearbeitet 12.04.2025 10:46:40

epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 2.x before 2.0.5 does not restrict the recursion depth, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

5.9

CVE-2016-6512

  • EPSS 1.89%
  • Veröffentlicht 06.08.2016 23:59:12
  • Zuletzt bearbeitet 12.04.2025 10:46:40

epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an overflow check in the tvb_get_guintvar function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet, related to the MMSE, WAP, WBXML, and...