| Max CVSS | 5.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-6425 | 5.0 |
The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups.c in the CUPS dissector in Wireshark 1.12.x before 1.12.1 allow remote attackers to cause a denial of service (buffer over-read and application crash) via
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 | |
| CVE-2014-6432 | 5.0 |
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not prevent data overwrites during copy operations, which allows remote attackers to cause a denial
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 | |
| CVE-2014-6422 | 5.0 |
The SDP dissector in Wireshark 1.10.x before 1.10.10 creates duplicate hashtables for a media channel, which allows remote attackers to cause a denial of service (application crash) via a crafted packet to the RTP dissector.
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 | |
| CVE-2014-6430 | 5.0 |
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not validate bitmask data, which allows remote attackers to cause a denial of service (application c
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 | |
| CVE-2014-6431 | 5.0 |
Buffer overflow in the SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service (application crash) via a crafted
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 | |
| CVE-2014-6429 | 5.0 |
The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not properly handle empty input data, which allows remote attackers to cause a denial of service (ap
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 | |
| CVE-2014-6421 | 5.0 |
Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x before 1.10.10 allows remote attackers to cause a denial of service (application crash) via a crafted packet that leverages split memory ownership between the SDP and RTP dissector
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 | |
| CVE-2014-6428 | 5.0 |
The dissect_spdu function in epan/dissectors/packet-ses.c in the SES dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not initialize a certain ID value, which allows remote attackers to cause a denial of service (application
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 | |
| CVE-2014-6423 | 5.0 |
The tvb_raw_text_add function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service (infinite loop) via an empty line.
|
05-11-2014 - 08:28 | 20-09-2014 - 10:55 |