Wireshark

Wireshark

685 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2013-3562

Exploit
  • EPSS 3.44%
  • Veröffentlicht 25.05.2013 03:18:16
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple integer signedness errors in the tvb_unmasked function in epan/dissectors/packet-websocket.c in the Websocket dissector in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (application crash) via a malformed p...

5

CVE-2013-3555

Exploit
  • EPSS 3.4%
  • Veröffentlicht 25.05.2013 03:18:15
  • Zuletzt bearbeitet 11.04.2025 00:51:21

epan/dissectors/packet-gtpv2.c in the GTPv2 dissector in Wireshark 1.8.x before 1.8.7 calls incorrect functions in certain contexts related to ciphers, which allows remote attackers to cause a denial of service (application crash) via a malformed pac...

5

CVE-2013-3556

  • EPSS 1.54%
  • Veröffentlicht 25.05.2013 03:18:15
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The fragment_add_seq_common function in epan/reassemble.c in the ASN.1 BER dissector in Wireshark before r48943 has an incorrect pointer dereference during a comparison, which allows remote attackers to cause a denial of service (application crash) v...

7.8

CVE-2013-2487

  • EPSS 3.56%
  • Veröffentlicht 07.03.2013 15:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer data types, which allows remote attackers to cause a denial of service (infinite loop) via crafted in...

5

CVE-2013-2488

  • EPSS 3.87%
  • Veröffentlicht 07.03.2013 15:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service (application crash) via a large ...

3.3

CVE-2013-2475

  • EPSS 0.36%
  • Veröffentlicht 07.03.2013 15:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The TCP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet.

6.1

CVE-2013-2476

  • EPSS 0.78%
  • Veröffentlicht 07.03.2013 15:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The dissect_hartip function in epan/dissectors/packet-hartip.c in the HART/IP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a packet with a header that is too short.

3.3

CVE-2013-2477

  • EPSS 0.36%
  • Veröffentlicht 07.03.2013 15:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The CSN.1 dissector in Wireshark 1.8.x before 1.8.6 does not properly manage function pointers, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

3.3

CVE-2013-2478

  • EPSS 1.45%
  • Veröffentlicht 07.03.2013 15:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The dissect_server_info function in epan/dissectors/packet-ms-mms.c in the MS-MMS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not properly manage string lengths, which allows remote attackers to cause a denial of service (a...

3.3

CVE-2013-2479

  • EPSS 1.12%
  • Veröffentlicht 07.03.2013 15:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The dissect_mpls_echo_tlv_dd_map function in epan/dissectors/packet-mpls-echo.c in the MPLS Echo dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via invalid Sub-tlv data.