Wireshark

Wireshark

680 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2011-1959

Exploit
  • EPSS 2.26%
  • Veröffentlicht 06.06.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (application crash) via a large leng...

4.3

CVE-2011-2174

Exploit
  • EPSS 2.92%
  • Veröffentlicht 06.06.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Double free vulnerability in the tvb_uncompress function in epan/tvbuff.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a packet with malformed data that uses zlib...

4.3

CVE-2011-2175

Exploit
  • EPSS 1.02%
  • Veröffentlicht 06.06.2011 19:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer underflow in the visual_read function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a malformed Visual Networks file that triggers a he...

4.3

CVE-2011-1590

Exploit
  • EPSS 2.47%
  • Veröffentlicht 29.04.2011 22:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.

9.3

CVE-2011-1591

Exploit
  • EPSS 77.8%
  • Veröffentlicht 29.04.2011 22:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted .pcap file.

4.3

CVE-2011-1592

Exploit
  • EPSS 1.36%
  • Veröffentlicht 29.04.2011 22:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service (application crash) via ...

9.3

CVE-2011-0024

  • EPSS 1.17%
  • Veröffentlicht 28.03.2011 16:55:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted capture file.

4.3

CVE-2011-1138

Exploit
  • EPSS 3.81%
  • Veröffentlicht 03.03.2011 01:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Off-by-one error in the dissect_6lowpan_iphc function in packet-6lowpan.c in Wireshark 1.4.0 through 1.4.3 on 32-bit platforms allows remote attackers to cause a denial of service (application crash) via a malformed 6LoWPAN IPv6 packet.

4.3

CVE-2011-1139

Exploit
  • EPSS 5.27%
  • Veröffentlicht 03.03.2011 01:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

wiretap/pcapng.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (application crash) via a pcap-ng file that contains a large packet-length field.

4.3

CVE-2011-1140

Exploit
  • EPSS 30.77%
  • Veröffentlicht 03.03.2011 01:00:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recurs...