Max CVSS | 8.3 | Min CVSS | 2.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2012-0067 | 4.3 |
wiretap/iptrace.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in an AIX iptrace file.
|
13-02-2023 - 03:24 | 11-04-2012 - 10:39 | |
CVE-2013-4081 | 5.0 |
The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 does not properly determine when to use a recursive approach, which allows remote attackers to cause
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2013-3556 | 5.0 |
The fragment_add_seq_common function in epan/reassemble.c in the ASN.1 BER dissector in Wireshark before r48943 has an incorrect pointer dereference during a comparison, which allows remote attackers to cause a denial of service (application crash) v
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2013-3561 | 7.8 |
Multiple integer overflows in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (loop or application crash) via a malformed packet, related to a crash of the Websocket dissector, an infinite loop in the MySQL dissector,
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4292 | 3.3 |
The dissect_stun_message function in epan/dissectors/packet-stun.c in the STUN dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly interact with key-destruction behavior in a certain tree library,
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4075 | 5.0 |
epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2012-4296 | 3.3 |
Buffer overflow in epan/dissectors/packet-rtps2.c in the RTPS2 dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet.
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-3558 | 5.0 |
The dissect_ccp_bsdcomp_opt function in epan/dissectors/packet-ppp.c in the PPP CCP dissector in Wireshark 1.8.x before 1.8.7 does not terminate a bit-field list, which allows remote attackers to cause a denial of service (application crash) via a ma
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4288 | 3.3 |
Integer overflow in the dissect_xtp_ecntl function in epan/dissectors/packet-xtp.c in the XTP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop or applic
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4076 | 5.0 |
Buffer overflow in the dissect_iphc_crtp_fh function in epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2013-3555 | 5.0 |
epan/dissectors/packet-gtpv2.c in the GTPv2 dissector in Wireshark 1.8.x before 1.8.7 calls incorrect functions in certain contexts related to ciphers, which allows remote attackers to cause a denial of service (application crash) via a malformed pac
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4291 | 3.3 |
The CIP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet.
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-3559 | 5.0 |
epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.8.x before 1.8.7 uses incorrect integer data types, which allows remote attackers to cause a denial of service (integer overflow, and heap memory corruption or NULL pointer de
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4285 | 3.3 |
The dissect_pft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (divide-by-zero error and appli
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4082 | 5.0 |
The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.8 does not validate the relationship between a record length and a trailer length, which allows remote attackers to cause a denial of service (hea
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2012-4289 | 3.3 |
epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a large number of ACL entries.
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4079 | 5.0 |
The dissect_schedule_message function in epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (infinite loop and application hang) via a crafted packet.
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2013-3562 | 5.0 |
Multiple integer signedness errors in the tvb_unmasked function in epan/dissectors/packet-websocket.c in the Websocket dissector in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (application crash) via a malformed p
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-4290 | 3.3 |
The CTDB dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a malformed packet.
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-3560 | 5.0 |
The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC dissector in Wireshark 1.8.x before 1.8.7 uses an incorrect format string, which allows remote attackers to cause a denial of service (application crash)
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2013-4078 | 5.0 |
epan/dissectors/packet-rdp.c in the RDP dissector in Wireshark 1.8.x before 1.8.8 does not validate return values during checks for data availability, which allows remote attackers to cause a denial of service (application crash) via a crafted packet
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2012-4293 | 3.3 |
plugins/ethercat/packet-ecatmb.c in the EtherCAT Mailbox dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly handle certain integer fields, which allows remote attackers to cause a denial of servi
|
30-10-2018 - 16:27 | 16-08-2012 - 10:38 | |
CVE-2013-4074 | 5.0 |
The dissect_capwap_data function in epan/dissectors/packet-capwap.c in the CAPWAP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 incorrectly uses a -1 data value to represent an error condition, which allows remote attackers to cau
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2012-4049 | 2.9 |
epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet.
|
30-10-2018 - 16:27 | 24-07-2012 - 19:55 | |
CVE-2013-4077 | 5.0 |
Array index error in the NBAP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to nbap.cnf and packet-nbap.c.
|
30-10-2018 - 16:27 | 09-06-2013 - 21:55 | |
CVE-2013-3557 | 5.0 |
The dissect_ber_choice function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.6.x before 1.6.15 and 1.8.x before 1.8.7 does not properly initialize a certain variable, which allows remote attackers to cause a denial of ser
|
30-10-2018 - 16:27 | 25-05-2013 - 03:18 | |
CVE-2012-0068 | 4.3 |
The lanalyzer_read function in wiretap/lanalyzer.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a Novell capture file containing a record that is too small.
|
27-09-2017 - 01:29 | 11-04-2012 - 10:39 | |
CVE-2013-4936 | 5.0 |
The IsDFP_Frame function in plugins/profinet/packet-pn-rt.c in the PROFINET Real-Time dissector in Wireshark 1.10.x before 1.10.1 does not validate MAC addresses, which allows remote attackers to cause a denial of service (NULL pointer dereference an
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4935 | 4.3 |
The dissect_per_length_determinant function in epan/dissectors/packet-per.c in the ASN.1 PER dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize a length field in certain abnormal situations, which allows remote att
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4931 | 5.0 |
epan/proto.c in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop) via a crafted packet that is not properly handled by the GSM RR dissector.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4927 | 7.8 |
Integer signedness error in the get_type_length function in epan/dissectors/packet-btsdp.c in the Bluetooth SDP dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop and CPU cons
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4929 | 7.8 |
The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not terminate packet-data processing after finding zero remaining bytes, which allows remote attackers to
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4924 | 5.0 |
epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 does not properly validate certain index values, which allows remote attackers to cause a denial of service (assertion failure and applicati
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4080 | 5.0 |
The dissect_r3_upstreamcommand_queryconfig function in epan/dissectors/packet-assa_r3.c in the Assa Abloy R3 dissector in Wireshark 1.8.x before 1.8.8 does not properly handle a zero-length item, which allows remote attackers to cause a denial of ser
|
19-09-2017 - 01:36 | 09-06-2013 - 21:55 | |
CVE-2013-4930 | 5.0 |
The dissect_dvbci_tpdu_hdr function in epan/dissectors/packet-dvbci.c in the DVB-CI dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not validate a certain length value before decrementing it, which allows remote attackers to c
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4921 | 5.0 |
Off-by-one error in the dissect_radiotap function in epan/dissectors/packet-ieee80211-radiotap.c in the Radiotap dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (application crash) via a crafted packet
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4932 | 5.0 |
Multiple array index errors in epan/dissectors/packet-gsm_a_common.c in the GSM A Common dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allow remote attackers to cause a denial of service (application crash) via a crafted packet.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4933 | 5.0 |
The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) via a cr
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4923 | 5.0 |
Memory leak in the dissect_dcom_ActivationProperties function in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (memory consumption) v
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4925 | 5.0 |
Integer signedness error in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted packet.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4926 | 5.0 |
epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 does not properly determine whether there is remaining packet data to process, which allows remote attackers to cause a denial of service (a
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4934 | 4.3 |
The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize certain structure members, which allows remote attackers to cause a denial of service (application cra
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4920 | 5.0 |
The P1 dissector in Wireshark 1.10.x before 1.10.1 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4928 | 7.8 |
Integer signedness error in the dissect_headers function in epan/dissectors/packet-btobex.c in the Bluetooth OBEX dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4922 | 5.0 |
Double free vulnerability in the dissect_dcom_ActivationProperties function in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (applica
|
19-09-2017 - 01:36 | 30-07-2013 - 00:56 | |
CVE-2013-4083 | 5.0 |
The dissect_pft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.6.x before 1.6.16, 1.8.x before 1.8.8, and 1.10.0 does not validate a certain fragment length value, which allows remote attackers to cause a denia
|
19-09-2017 - 01:36 | 09-06-2013 - 21:55 | |
CVE-2012-4287 | 5.0 |
epan/dissectors/packet-mongo.c in the MongoDB dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a small value for a BSON document length.
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-4295 | 3.3 |
Array index error in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service (application crash) via a crafted speed
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-4294 | 5.8 |
Buffer overflow in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to execute arbitrary code via a large speed (aka rate) value.
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-4048 | 3.3 |
The PPP dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted packet, as demonstrated by a usbmon
|
19-09-2017 - 01:35 | 24-07-2012 - 19:55 | |
CVE-2012-4298 | 5.4 |
Integer signedness error in the vwr_read_rec_data_ethernet function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.2 allows user-assisted remote attackers to execute arbitrary code via a crafted packet-trace file th
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-4286 | 4.3 |
The pcapng_read_packet_block function in wiretap/pcapng.c in the pcap-ng file parser in Wireshark 1.8.x before 1.8.2 allows user-assisted remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted pcap-ng
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-3548 | 4.3 |
The dissect_drda function in epan/dissectors/packet-drda.c in Wireshark 1.6.x through 1.6.10 and 1.8.x through 1.8.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a small value for a certain length field
|
19-09-2017 - 01:35 | 30-08-2012 - 22:55 | |
CVE-2012-4297 | 8.3 |
Buffer overflow in the dissect_gsm_rlcmac_downlink function in epan/dissectors/packet-gsm_rlcmac.c in the GSM RLC MAC dissector in Wireshark 1.6.x before 1.6.10 and 1.8.x before 1.8.2 allows remote attackers to execute arbitrary code via a malformed
|
19-09-2017 - 01:35 | 16-08-2012 - 10:38 | |
CVE-2012-0043 | 5.8 |
Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) or possibly execu
|
19-09-2017 - 01:34 | 11-04-2012 - 10:39 | |
CVE-2012-0042 | 2.9 |
Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet, related to ep
|
19-09-2017 - 01:34 | 11-04-2012 - 10:39 | |
CVE-2012-0041 | 4.3 |
The dissect_packet function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a capture file, as demonstrated by an airopeek file.
|
19-09-2017 - 01:34 | 11-04-2012 - 10:39 | |
CVE-2012-0066 | 4.3 |
Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a (1) Accellent 5Views (aka .5vw) file, (2) I4B trace file, or (3) NETMON 2 capture file.
|
19-09-2017 - 01:34 | 11-04-2012 - 10:39 |