Wireshark

Wireshark

692 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.8

CVE-2012-4294

Exploit
  • EPSS 3.42%
  • Veröffentlicht 16.08.2012 10:38:08
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to execute arbitrary code via a large speed (aka rate) value.

3.3

CVE-2012-4295

Exploit
  • EPSS 1.08%
  • Veröffentlicht 16.08.2012 10:38:08
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Array index error in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service (application crash) via a crafted speed ...

2.9

CVE-2012-4049

Exploit
  • EPSS 0.58%
  • Veröffentlicht 24.07.2012 19:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet.

3.3

CVE-2012-4048

  • EPSS 0.21%
  • Veröffentlicht 24.07.2012 19:55:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The PPP dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted packet, as demonstrated by a usbmon ...

3.3

CVE-2012-2393

  • EPSS 1.07%
  • Veröffentlicht 30.06.2012 10:15:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 does not properly construct certain array data structures, which allows remote attackers to cause a denial of service (application cra...

3.3

CVE-2012-2394

  • EPSS 1.82%
  • Veröffentlicht 30.06.2012 10:15:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 on the SPARC and Itanium platforms does not properly perform data alignment for a certain structure member, which allows remote attackers to cause a denial of service (application crash) via a (1) ...

3.3

CVE-2012-3825

  • EPSS 2.02%
  • Veröffentlicht 30.06.2012 10:15:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple integer overflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) BACapp and (2) Bluetooth HCI dissectors, a different vulnerability t...

3.3

CVE-2012-3826

  • EPSS 0.92%
  • Veröffentlicht 30.06.2012 10:15:05
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple integer underflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (loop) via vectors related to the R3 dissector, a different vulnerability than CVE-2012-2392.

3.3

CVE-2012-2392

  • EPSS 2.32%
  • Veröffentlicht 30.06.2012 10:15:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allows remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) ANSI MAP, (2) ASF, (3) IEEE 802.11, (4) IEEE 802.3, and (5) LTP dissectors.

3.3

CVE-2012-1593

  • EPSS 1.5%
  • Veröffentlicht 11.04.2012 10:39:26
  • Zuletzt bearbeitet 11.04.2025 00:51:21

epan/dissectors/packet-ansi_a.c in the ANSI A dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.