Wireshark

Wireshark

692 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2008-5285

  • EPSS 2.42%
  • Veröffentlicht 01.12.2008 15:30:03
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of service via a long SMTP request, which triggers an infinite loop.

4.3

CVE-2008-4680

Exploit
  • EPSS 3.84%
  • Veröffentlicht 22.10.2008 18:00:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

packet-usb.c in the USB dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a malformed USB Request Block (URB).

4.3

CVE-2008-4681

  • EPSS 1.05%
  • Veröffentlicht 22.10.2008 18:00:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Unspecified vulnerability in the Bluetooth RFCOMM dissector in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via unknown packets.

5

CVE-2008-4682

  • EPSS 6.01%
  • Veröffentlicht 22.10.2008 18:00:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application abort) via a malformed Tamos CommView capture file (aka .ncf file) with an "unknown/unexpected packet type" that triggers a failed assertion.

5

CVE-2008-4683

Exploit
  • EPSS 3.33%
  • Veröffentlicht 22.10.2008 18:00:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The dissect_btacl function in packet-bthci_acl.c in the Bluetooth ACL dissector in Wireshark 0.99.2 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a packet with an invalid length, related to an err...

4.3

CVE-2008-4684

  • EPSS 1.05%
  • Veröffentlicht 22.10.2008 18:00:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly handle exceptions thrown by post dissectors, which allows remote attackers to cause a denial of service (application crash) via a certain series of packets, as demonstrated by enabling ...

5

CVE-2008-4685

  • EPSS 1.1%
  • Veröffentlicht 22.10.2008 18:00:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Use-after-free vulnerability in the dissect_q931_cause_ie function in packet-q931.c in the Q.931 dissector in Wireshark 0.10.3 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via certain packets that tr...

5

CVE-2008-3932

  • EPSS 0.73%
  • Veröffentlicht 04.09.2008 19:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a denial of service (hang) via a crafted NCP packet that triggers an infinite loop.

3.3

CVE-2008-3933

  • EPSS 0.17%
  • Veröffentlicht 04.09.2008 19:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncompress function.

3.3

CVE-2008-3934

  • EPSS 0.17%
  • Veröffentlicht 04.09.2008 19:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Unspecified vulnerability in Wireshark (formerly Ethereal) 0.99.6 through 1.0.2 allows attackers to cause a denial of service (crash) via a crafted Tektronix .rf5 file.