Lucene search
+L

1049 matches found

NVD
NVD
added 2017/04/12 10:59 a.m.20 views

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

7.5CVSS7.5AI score0.01699EPSS
Exploits0References4
Prion
Prion
added 2017/04/12 10:59 a.m.16 views

Code injection

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

5CVSS7.2AI score0.01699EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2017/04/12 10:59 a.m.22 views

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

7.5CVSS7.1AI score0.01699EPSS
Exploits0References4
OSV
OSV
added 2017/04/12 10:59 a.m.2 views

UBUNTU-CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

7.5CVSS7.1AI score0.01699EPSS
Exploits0References5
OSV
OSV
added 2017/04/12 10:59 a.m.23 views

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

7.5CVSS6.9AI score
Exploits0References4
CVE
CVE
added 2017/04/12 10:0 a.m.76 views

CVE-2016-7957

CVE-2016-7957 affects Wireshark 2.2.0, where the Bluetooth L2CAP dissector could crash from crafted input or malicious captures. The root cause is a potential crash triggered by using a seven-byte memcmp against shorter strings during dissection. The issue was fixed in the dissector code path epa...

7.5CVSS7.4AI score0.01699EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2017/04/12 10:0 a.m.26 views

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

7.5AI score0.01699EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2017/04/12 10:0 a.m.35 views

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

7.5CVSS2.7AI score0.01699EPSS
Exploits0
CNVD
CNVD
added 2016/12/07 12:0 a.m.6 views

BlueZ Content Misreference Vulnerability

BlueZ is an official Bluetooth stack for Linux. A content misreference vulnerability exists in the 'confopt' function in the tools/parser/l2cap.c source file in BlueZ version 5.42. An attacker can cause a denial of service hcidump crash by running a compromised dump file...

5.3CVSS8.5AI score0.03806EPSS
Exploits1References1
CNVD
CNVD
added 2016/12/07 12:0 a.m.6 views

BlueZ Buffer Overflow Vulnerability

BlueZ is an official Bluetooth stack for Linux. A buffer overflow vulnerability exists in the 'l2capdump' function in the tools/parser/l2cap.c source file in BlueZ version 5.42. An attacker can exploit this vulnerability to cause a denial of service hcidump crash...

5.3CVSS8.8AI score0.03723EPSS
Exploits1References1
CNVD
CNVD
added 2016/12/05 12:0 a.m.7 views

BlueZ buffer overflow vulnerability (CNVD-2016-11951)

BlueZ is an official Bluetooth stack for Linux. A buffer overflow vulnerability exists in the 'setextctrl' function in the tools/parser/l2cap.c source file of BlueZ version 5.42. An attacker can exploit this vulnerability by running a compromised dump file to cause a denial of service...

5.3CVSS9.3AI score0.02923EPSS
Exploits1References1
CNVD
CNVD
added 2016/12/05 12:0 a.m.5 views

BlueZ Out-of-Bounds Read Vulnerability

BlueZ is an official Bluetooth stack for Linux. A security vulnerability exists in the 'l2cappacket' function in the monitor/packet.c source file of BlueZ version 5.42. An attacker can exploit this vulnerability by running a compromised file to cause btmon to crash read across boundaries...

5.3CVSS8.6AI score0.03304EPSS
Exploits1References1
OSV
OSV
added 2016/12/03 6:59 a.m.10 views

CVE-2016-9802

In BlueZ 5.42, a buffer over-read was identified in "l2cappacket" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...

5.3CVSS7.5AI score
Exploits0References3
OSV
OSV
added 2016/12/03 6:59 a.m.2 views

DEBIAN-CVE-2016-9798

In BlueZ 5.42, a use-after-free was identified in "confopt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash...

5.3CVSS6.9AI score0.03806EPSS
Exploits1References1
OSV
OSV
added 2016/12/03 6:59 a.m.4 views

UBUNTU-CVE-2016-9798

In BlueZ 5.42, a use-after-free was identified in "confopt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash...

5.3CVSS6.4AI score0.03806EPSS
Exploits1References3
OSV
OSV
added 2016/12/03 6:59 a.m.6 views

UBUNTU-CVE-2016-9797

In BlueZ 5.42, a buffer over-read was observed in "l2capdump" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash...

5.3CVSS6.8AI score0.03723EPSS
Exploits1References3
OSV
OSV
added 2016/12/03 6:59 a.m.6 views

UBUNTU-CVE-2016-9801

In BlueZ 5.42, a buffer overflow was observed in "setextctrl" function in "tools/parser/l2cap.c" source file when processing corrupted dump file...

5.3CVSS7.1AI score0.02923EPSS
Exploits1References3
OSV
OSV
added 2016/12/03 6:59 a.m.3 views

UBUNTU-CVE-2016-9802

In BlueZ 5.42, a buffer over-read was identified in "l2cappacket" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash...

5.3CVSS7AI score0.03304EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2015/02/17 12:0 a.m.9 views

PT-2017-14249 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.19 Description: The issue is related to the bnep add connection function in the Linux kernel, which does not properly check for the availability of an l2cap socket. This allows local users to potentially gain...

10CVSS7.5AI score0.93838EPSS
Exploits87References402
Tenable Nessus
Tenable Nessus
added 2013/08/28 12:0 a.m.62 views

Oracle Linux 6 : kernel (ELSA-2013-1173)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-1173 advisory. - x86 perf/x86: Fix offcorersp valid mask for SNB/IVB Nikola Pajkovsky 971314 971315 CVE-2013-2146 - bluetooth L2CAP - Fix info leak via getsockname...

6.9CVSS7.8AI score0.04707EPSS
Exploits4References7
Rows per page
Query Builder