Wireshark

Wireshark

680 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2014-8713

  • EPSS 1.32%
  • Veröffentlicht 23.11.2014 02:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Stack-based buffer overflow in the build_expert_data function in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (application cra...

5

CVE-2014-8714

  • EPSS 1.01%
  • Veröffentlicht 23.11.2014 02:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The dissect_write_structured_field function in epan/dissectors/packet-tn5250.c in the TN5250 dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (infinite loop) via a crafted pack...

5

CVE-2014-8712

  • EPSS 0.82%
  • Veröffentlicht 23.11.2014 02:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The build_expert_data function in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 does not properly initialize a data structure, which allows remote attackers to cause a denial of se...

5

CVE-2014-8711

  • EPSS 2.13%
  • Veröffentlicht 23.11.2014 02:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple integer overflows in epan/dissectors/packet-amqp.c in the AMQP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allow remote attackers to cause a denial of service (application crash) via a crafted amqp_0_10 PDU in a pac...

5

CVE-2014-8710

  • EPSS 0.84%
  • Veröffentlicht 23.11.2014 02:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The decompress_sigcomp_message function in epan/sigcomp-udvm.c in the SigComp UDVM dissector in Wireshark 1.10.x before 1.10.11 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

5

CVE-2014-6421

  • EPSS 0.47%
  • Veröffentlicht 20.09.2014 10:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x before 1.10.10 allows remote attackers to cause a denial of service (application crash) via a crafted packet that leverages split memory ownership between the SDP and RTP dissector...

5

CVE-2014-6422

  • EPSS 0.57%
  • Veröffentlicht 20.09.2014 10:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The SDP dissector in Wireshark 1.10.x before 1.10.10 creates duplicate hashtables for a media channel, which allows remote attackers to cause a denial of service (application crash) via a crafted packet to the RTP dissector.

5

CVE-2014-6423

  • EPSS 1.64%
  • Veröffentlicht 20.09.2014 10:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The tvb_raw_text_add function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service (infinite loop) via an empty line.

5

CVE-2014-6424

  • EPSS 0.46%
  • Veröffentlicht 20.09.2014 10:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The dissect_v9_v10_pdu_data function in epan/dissectors/packet-netflow.c in the Netflow dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 refers to incorrect offset and start variables, which allows remote attackers to cause a den...

5

CVE-2014-6425

  • EPSS 0.95%
  • Veröffentlicht 20.09.2014 10:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups.c in the CUPS dissector in Wireshark 1.12.x before 1.12.1 allow remote attackers to cause a denial of service (buffer over-read and application crash) via ...