18 matches found
Wireshark 代码问题漏洞
Wireshark is a set of network packet analysis software developed by the Wireshark team. The software’s function is to capture network packets and display detailed data for analysis. Versions of Wireshark from 4.6.0 to 4.6.4 had code vulnerabilities that could lead to a denial-of-service attack du...
EUVD-2017-4505
Malware in sbrugna...
EUVD-2017-4526
Malware in sbrugna...
EulerOS Virtualization for ARM 64 3.0.5.0 : tcpdump (EulerOS-SA-2020-1072)
According to the versions of the tcpdump package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer,...
ALPINE-CVE-2018-16227
The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-80211.c for the Mesh Flags subfield...
CVE-2018-16227
The IEEE 802.11 parser in tcpdump before 4.9.3 has a buffer over-read in print-80211.c for the Mesh Flags subfield...
Wireshark Infinite Loop Vulnerability (CNVD-2019-12179)
Wireshark formerly Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis.IEEE 802.11 is one of the IEEE 802.11 protocol parser.... An infinite loop vulnerability exists i...
tcpdump: Buffer over-read in print-802_11.c:parse_elements() in IEEE 802.11 parser
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-80211.c:parseelements...
openSUSE Security Update : tcpdump (openSUSE-2017-1205)
This update for tcpdump to version 4.9.2 fixes several issues. These security issues were fixed : - CVE-2017-11108: Prevent remote attackers to cause DoS heap-based buffer over-read and application crash via crafted packet data. The crash occured in the EXTRACT16BITS function, called from the...
CVE-2017-13008
The CVE-2017-13008 entry is valid and supported by connected documents. It affects tcpdump prior to 4.9.2, where the IEEE 802.11 parser (print-802_11.c:parse_elements) has a buffer over-read vulnerability. An attacker could potentially exploit this via crafted traffic to obtain sensitive informat...
CVE-2017-12987
tcpdump before 4.9.2 contains a buffer over-read in print-802_11.c:parse_elements(), affecting the IEEE 802.11 parser and enabling possible information disclosure. The CVE is CVE-2017-12987. Public sources describe the issue as a memory overread that could leak sensitive data from the affected pa...
CVE-2017-13008
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-80211.c:parseelements...
Tcpdump IEEE 802.11 parser buffer overflow vulnerability (CNVD-2017-27744)
Tcpdump is a set of sniffing tools developed by the Tcpdump team that run under the command line. The tool allows users to intercept and display TCP/IP and other packets sent or received over a network connection to that computer.IEEE 802.11 parser is one of the IEEE 802.11 standard parsers. A...
UBUNTU-CVE-2017-12987
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-80211.c:parseelements...
UBUNTU-CVE-2016-7927
The IEEE 802.11 parser in tcpdump before 4.9.0 has a buffer overflow in print-80211.c:ieee80211radioprint...
Wireshark IEEE 802.11 parser denial of service vulnerability (CNVD-2016-02658)
Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in the epan/crypt/airpdcap.c file in the IEEE 802.11...
Wireshark 802.11 Parser Denial of Service Vulnerability
Wireshark is the most popular network protocol parser. In Wireshark version 2.0.x before 2.0.1 and version 1.12.x before 1.12.9, the function AirPDcapPacketProcess in epan/crypt/airpdcap.c in the 802.11 parser does not validate the relationship between the total length and the capture length of t...
tcpdump denial of service
Off-by-one buffer overflow in the parseelements function in the 802.11 printer code print-80211.c for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service crash via a crafted 802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based...