92 matches found
Wireshark 2.0.0 2.0.4 - MMSE WAP WBXML WSP Dissectors Denial of Service
Wireshark 2.0.0 2.0.4 - MMSE WAP WBXML WSP Dissectors Denial of Service Build Information: TShark Wireshark 2.0.2 SVN Rev Unknown from unknown Copyright 1998-2016 Gerald Combs and contributors. License GPLv2+: GNU GPL version 2 or later This is free software; see the source for copying conditions...
Wireshark 2.0.0 < 2.0.4 - MMSE / WAP / WBXML / WSP Dissectors Denial of Service
Build Information: TShark Wireshark 2.0.2 SVN Rev Unknown from unknown Copyright 1998-2016 Gerald Combs and contributors. License GPLv2+: GNU GPL version 2 or later This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A...
CVE-2016-6513
epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 2.x before 2.0.5 does not restrict the recursion depth, which allows remote attackers to cause a denial of service application crash via a crafted packet...
DSA-3615-1 wireshark - security update
Bulletin has no description...
Debian: Security Advisory (DSA-3615-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Wireshark 1.12.x < 1.12.12 Multiple DoS
The version of Wireshark installed on the remote Windows host is 1.12.x prior to 1.12.12. It is, therefore, affected by multiple denial of service vulnerabilities : - An infinite loop exists in the SPOOLs dissector. A remote attacker, via a specially crafted packet or trace file, can exploit this...
Updated wireshark packages fix security vulnerability
Updated wireshark packages fix security vulnerabilities: The SPOOLS dissector could go into an infinite loop CVE-2016-5350. The IEEE 802.11 dissector could crash CVE-2016-5351. The IEEE 802.11 dissector could crash CVE-2016-5352. The UMTS FP dissector could crash CVE-2016-5353. Some USB dissector...
Wireshark WBXML Parser Integer Overflow Vulnerability
Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. An integer overflow vulnerability exists in the 'parsewbxmltagdefined' function in...
CVE-2016-5359
epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 1.12.x before 1.12.12 mishandles offsets, which allows remote attackers to cause a denial of service integer overflow and infinite loop via a crafted packet...
CentOS 3 / 4 : wireshark (CESA-2006:0726)
New Wireshark packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Wireshark is a program for monitoring network traffic. Several flaws were found in Wireshark's HTTP, WBXML, LDAP...
Fedora Update for wbxml2 FEDORA-2008-0680
Check for the Version of wbxml2 OpenVAS Vulnerability Test Fedora Update for wbxml2 FEDORA-2008-0680 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
[SECURITY] Fedora 8 Update: wbxml2-0.9.2-12.fc8
The WBXML Library libwbxml contains a library and its associated tools to parse, encode and handle WBXML documents. The WBXML format is a binary representation of XML, defined by the Wap Forum, and used to reduce bandwidth in mobile communications...
openSUSE 10 Security Update : ethereal (ethereal-2246)
Various problems have been fixed in the network analyzer Ethereal, most leading to crashes of the ethereal program. CVE-2006-5740: A unspecified vulnerability in the LDAP dissector could be used to crash Ethereal. CVE-2006-4574: A single \0 byte heap overflow was fixed in the MIME multipart...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in phpSyncML 0.1.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the basedir parameter to 1 Decoder.php and 2 Encoder.php in WBXML/...
CVE-2007-4978
Multiple PHP remote file inclusion vulnerabilities in phpSyncML 0.1.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the basedir parameter to 1 Decoder.php and 2 Encoder.php in WBXML/...
phpsyncml <= 0.1.2 Remote File Include Vulnerabilities
No description provided by source. ======================================================================== || || || || || || || || || || || || ======================================================================== ======================================================================== phpsync...
phpsyncml 0.1.2 - Remote File Inclusion
======================================================================== || || || || || || || || || || || || ======================================================================== ======================================================================== phpsyncml = 0.1.2 Remote File Include...
phpsyncml <= 0.1.2 Remote File Include Vulnerabilities
Exploit for unknown platform in category web applications ====================================================== phpsyncml = 0.1.2 Remote File Include Vulnerabilities ====================================================== ======================================================================== ||...
Mandrake Linux Security Advisory : wireshark (MDKSA-2006:195)
Vulnerabilities in the HTTP, LDAP, XOT, WBXML, and MIME Multipart dissectors were discovered in versions of wireshark less than 0.99.4, as well as various other bugs. This updated provides wireshark 0.99.4 which is not vulnerable to these issues. %NASLMINLEVEL 70300 C Tenable Network Security, In...
Fedora Core 6 : wireshark-0.99.4-1.fc6 (2006-1140)
Wed Nov 1 2006 Radek Vokal 0.99.4-1 - upgrade to 0.99.4-1, fixes multiple security issues - CVE-2006-5468 - The HTTP dissector could dereference a NULL pointer. - CVE-2006-5469 - The WBXML dissector could crash. - CVE-2006-5470 - The LDAP dissector and possibly others could crash. - CVE-2006-4805...