Lucene search
K

92 matches found

OSV
OSV
added 2019/09/16 4:42 a.m.4 views

USN-4133-1 Wireshark vulnerabilities

It was discovered that Wireshark improperly handled certain input. A remote or local attacker could cause Wireshark to crash by injecting malformed packets onto the wire or convincing someone to read a malformed packet trace file...

7.5CVSS7.1AI score0.06079EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/04/18 12:0 a.m.28 views

Wireshark 3.0.x < 3.0.1 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.0.1 advisory. - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This...

7.5CVSS6.9AI score0.05803EPSS
Exploits10References31
Tenable Nessus
Tenable Nessus
added 2019/04/18 12:0 a.m.44 views

Wireshark 2.6.x < 2.6.8 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.6.8. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.6.8 advisory. - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This...

7.5CVSS6.9AI score0.05803EPSS
Exploits6References19
BDU FSTEC
BDU FSTEC
added 2019/04/12 12:0 a.m.7 views

The vulnerability of the SAP HANA Extended Application Services development tool lies in the fact that the recording of user credentials in a trace file allows an attacker to access protected information.

The vulnerability of the SAP HANA Extended Application Services development tool lies in the process of recording user credentials in a trace file. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to protected information...

8.3CVSS7.2AI score0.01754EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2018/11/29 12:0 a.m.4 views

Wireshark Denial of Service Vulnerability (CNVD-2018-26638)

Wireshark formerly known as Ethereal is a set of network packet analysis software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis.LBMPDM dissector is one of the LBMPDM parsers. A security vulnerability exists in...

7.5CVSS7.5AI score0.04155EPSS
Exploits1References1
Kaspersky
Kaspersky
added 2018/10/10 12:0 a.m.508 views

KLA11337 Multiple DoS vulnerabilities in Wireshark

Multiple serious vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An unspecified vulnerability in the MS-WSP dissector can be exploited remotely via malformed packet trace file to...

7.8CVSS7.1AI score0.11591EPSS
Exploits0References6
CNVD
CNVD
added 2018/07/09 12:0 a.m.4 views

IBM WebSphere Application Server Information Disclosure Vulnerability (CNVD-2018-13466)

IBM WebSphere Application Server WAS is an application server product developed and distributed by IBM in the U.S. It is a platform for Java EE and Web services applications, and is the foundation of the IBM WebSphere software platform. A security vulnerability exists in IBM WAS that stems from t...

6.7CVSS5.7AI score0.00265EPSS
Exploits0References1
OSV
OSV
added 2018/07/06 2:29 p.m.4 views

CVE-2018-1621

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local attacker to obtain clear text password in a trace file caused by improper handling of some datasource custom properties. IBM X-Force ID: 144346...

6.7CVSS5.8AI score0.00265EPSS
Exploits0References3
CNVD
CNVD
added 2018/04/04 12:0 a.m.5 views

Wireshark epan/dissectors/packet-isup.c file memory leak vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in the epan/dissectors/packet-isup.c file in Wireshark...

7.5CVSS6.7AI score0.0206EPSS
Exploits1References1
Prion
Prion
added 2018/03/14 7:29 p.m.20 views

Information disclosure

In systems using the optional capture & replay functionality of SAP HANA, 1.00 and 2.00, see SAP Note 2362820 for more information about capture & replay, user credentials may be stored in clear text in the indexserver trace files of the control system. An attacker with the required authorization...

3.5CVSS8.1AI score0.01577EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2018/03/14 7:29 p.m.18 views

CVE-2018-2402

In systems using the optional capture & replay functionality of SAP HANA, 1.00 and 2.00, see SAP Note 2362820 for more information about capture & replay, user credentials may be stored in clear text in the indexserver trace files of the control system. An attacker with the required authorization...

8.4CVSS7.8AI score0.01577EPSS
Exploits0References3
OSV
OSV
added 2018/03/14 7:29 p.m.4 views

CVE-2018-2402

In systems using the optional capture & replay functionality of SAP HANA, 1.00 and 2.00, see SAP Note 2362820 for more information about capture & replay, user credentials may be stored in clear text in the indexserver trace files of the control system. An attacker with the required authorization...

8.4CVSS5.8AI score0.01577EPSS
Exploits0References3
CVE
CVE
added 2018/03/14 7:0 p.m.55 views

CVE-2018-2402

SAP HANA vulnerability CVE-2018-2402 affects the optional capture & replay feature in SAP HANA versions 1.00 and 2.00. The root cause is that user credentials can be stored in plaintext in the control system’s indexserver trace files, enabling an attacker with required authorizations on the contr...

8.4CVSS8.2AI score0.01577EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2018/02/24 12:0 a.m.6 views

Wireshark epan/dissectors/packet-thread.c file denial of service vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in the epan/dissectors/packet-thread.c file in Wireshark...

7.5CVSS6.7AI score0.02171EPSS
Exploits0References1
CNVD
CNVD
added 2018/02/24 12:0 a.m.4 views

Wireshark epan/dissectors/packet-lltd.c file denial of service vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in the epan/dissectors/packet-lltd.c file in Wireshark...

7.5CVSS6.7AI score0.02216EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/04 12:0 a.m.4 views

Wireshark 'epan/dissectors/packet-cipsafety.c' Denial of Service Vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A denial of service vulnerability exists in Wireshark...

7.5CVSS6.7AI score0.16786EPSS
Exploits1References1
OSV
OSV
added 2017/08/25 8:29 p.m.3 views

CVE-2017-12817

In Kaspersky Internet Security for Android 11.12.4.1622, some of the application trace files were not encrypted...

7.5CVSS5.8AI score0.00861EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2017/08/25 8:29 p.m.3 views

CVE-2017-12817

In Kaspersky Internet Security for Android 11.12.4.1622, some of the application trace files were not encrypted...

7.5CVSS5.4AI score0.00861EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/08/25 8:0 p.m.24 views

CVE-2017-12817

In Kaspersky Internet Security for Android 11.12.4.1622, some of the application trace files were not encrypted...

7.6AI score0.00861EPSS
Exploits0References2
Citrix
Citrix
added 2016/09/29 12:0 a.m.8 views

Error: "An Unexpected Error Occurred. " on Receiver 4.4.1

This article is intended for Citrix administrators and technical teams only.Non-admin users must contact their company’s Help Desk/IT support team and can refer toCTX297149for more information Receiver 4.4-"An Unexpected Error Occurred. The AuthManager Log or trace files my contain information...

6.8AI score
Exploits0
Rows per page
Query Builder