59 matches found
CVE-2016-7179
Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2016-7177
epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted packet...
CVE-2016-7179
Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2016-7179
Wireshark 2.x before 2.0.6 is affected by CVE-2016-7179: a stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c (Catapult DCT2000 dissector) can be triggered by sending a crafted packet, potentially causing an application crash. Remediation: upgrade to Wireshark 2.0.6 or newer...
CVE-2016-7177
CVE-2016-7177 affects Wireshark 2.x up to 2.0.5 (Catapult DCT2000 dissector). The dissector does not restrict the number of channels, allowing a remote attacker to cause a denial of service via a crafted packet, via a buffer over-read that crashes the application. Affected component: Catapult DCT...
KLA10867 Denial of service vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet. Technical details These vulnerabilities related to multiple dissectors: 1...
The vulnerability of the Wireshark Network Protocol Analyzer software allows a remote attacker to compromise the accessibility of protected information.
A vulnerability exists in the readnewline function of the Catapult DCT2000 dissector in Wireshark, due to incorrect processing of the '\n' and '\r' characters. Exploiting this vulnerability allows malicious actors to cause service failures—such as insufficient buffer filling, related to a...
Oracle Solaris Third-Party Patch Update : wireshark (multiple_buffer_errors_vulnerabilities_in3)
The remote Solaris system is missing necessary patches to address security updates : - The dissectlog function in plugins/irda/packet-irda.c in the IrDA dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' characters, which allows remote attackers to cause a denial of service...
openSUSE Security Update : wireshark (openSUSE-SU-2014:1038-1)
This wireshark version update to 1.10.9 fixes the following security issues : - fixes several crashes triggered by malformed protocol packages - The Catapult DCT2000 and IrDA dissectors could underrun a buffer wnpa-sec-2014-08 CVE-2014-5161 CVE-2014-5162 bnc889901 - The GSM Management dissector...
DSA-3002-1 wireshark - security update
Bulletin has no description...
Debian: Security Advisory (DSA-3002-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
DEBIAN-CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
Buffer overflow
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
UBUNTU-CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
CVE-2014-5162
Wireshark 1.10.x before 1.10.9 is affected by CVE-2014-5162 in the Catapult DCT2000 dissector (wiretap/catapult_dct2000.c). The read_new_line function does not properly strip '\n' and '\r', enabling a remote attacker to cause a denial of service via a crafted packet (off-by-one buffer underflow l...
CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...