CVE-2015-1612

OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."...

CVE-2015-1611

OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to "fake LLDP injection."...

Design/Logic Flaw

OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to "fake LLDP injection."...

CVE-2015-1612

The CVE-2015-1612 issue affects the OpenFlow plugin for OpenDaylight (before Helium SR3). It enables LLDP-related spoofing of the SDN topology that can affect data flow. Affected component: openflowplugin in OpenDaylight; root cause: reuse of LLDP packets leading to topology spoofing (LLDP Relay)...

CVE-2015-1611

OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to "fake LLDP injection."...

CVE-2015-1611

The OpenFlow plugin for OpenDaylight (before Helium SR3) is affected by LLDP spoofing via fake LLDP injections, enabling remote attackers to spoof the SDN topology and disrupt data flow. Affected component: openflowplugin in OpenDaylight; root cause: reuse/fake LLDP packets. Impact: topology spoo...

Wireshark 2.2.x < 2.2.2 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.2.2. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.2 advisory. - In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion,...

FreeBSD : wireshark -- multiple vulnerabilities (7fff2b16-b0ee-11e6-86b8-589cfc054129)

Wireshark project reports : Wireshark project is releasing Wireshark 2.2.2, which addresses : - wnpa-sec-2016-58: Profinet I/O long loop - CVE-2016-9372 - wnpa-sec-2016-59: AllJoyn crash - CVE-2016-9374 - wnpa-sec-2016-60: OpenFlow crash - CVE-2016-9376 - wnpa-sec-2016-61: DCERPC crash -...

Debian DLA-714-1 : wireshark security update

The following vulnerabilities have been discovered in the Debian Wheezy's Wireshark version : CVE-2016-9373 The DCERPC dissector could crash CVE-2016-9374 The AllJoyn dissector could crash CVE-2016-9375 The DTN dissector could ender an infinite loop CVE-2016-9376 The OpenFlow dissector could cras...

Debian DSA-3719-1 : wireshark - security update

It was discovered that wireshark, a network protocol analyzer, contained several vulnerabilities in the dissectors for DCERPC, AllJoyn, DTN, and OpenFlow, that could lead to various crashes, denial-of-service, or execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Th...

[SECURITY] [DSA 3719-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3719-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 21, 2016 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3719-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3719-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 21, 2016 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3719-1 (wireshark - security update)

It was discovered that wireshark, a network protocol analyzer, contained several vulnerabilities in the dissectors for DCERPC, AllJoyn, DTN, and OpenFlow, that could lead to various crashes, denial-of-service, or execution of arbitrary code. OpenVAS Vulnerability Test $Id: deb3719.nasl 6608...

Security fix for the ALT Linux 9 package wireshark version 2.2.2-alt1

Nov. 21, 2016 Anton Farygin 2.2.2-alt1 - new version, in which following vulnerabilities have been fixed: CVE-2016-9372 Profinet I/O long loop. CVE-2016-9373 DCERPC crash. CVE-2016-9374 AllJoyn crash. CVE-2016-9375 DTN infinite loop. CVE-2016-9376 OpenFlow crash...

Debian: Security Advisory (DSA-3719-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2016-9376

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflowv5.c by ensuring that certain length values were sufficiently large...

Wireshark Multiple DoS Vulnerabilities (Nov 2016) - Windows

Wireshark is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Wireshark OpenFlow Parser Denial of Service Vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A denial of service hole exists in the OpenFlow parser in Wireshark versions 2.2.0 throu...

Wireshark Multiple DoS Vulnerabilities (Nov 2016) - Mac OS X

Wireshark is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

DEBIAN-CVE-2016-9376

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflowv5.c by ensuring that certain length values were sufficiently large...