Lucene search
K

220 matches found

OSV
OSV
added 2017/03/04 3:59 a.m.6 views

ALPINE-CVE-2017-6474

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by validating record sizes...

7.5CVSS6.8AI score0.02949EPSS
Exploits0References1
OSV
OSV
added 2017/03/04 3:59 a.m.3 views

DEBIAN-CVE-2017-6473

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a K12 file parser crash, triggered by a malformed capture file. This was addressed in wiretap/k12.c by validating the relationships between lengths and offsets...

7.5CVSS7.3AI score0.02667EPSS
Exploits0References1
OSV
OSV
added 2017/03/04 3:59 a.m.1 views

DEBIAN-CVE-2017-6468

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser crash, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by validating the relationship between pages and records...

7.5CVSS7.3AI score0.02594EPSS
Exploits0References1
OSV
OSV
added 2017/03/04 3:59 a.m.2 views

ALPINE-CVE-2017-6473

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a K12 file parser crash, triggered by a malformed capture file. This was addressed in wiretap/k12.c by validating the relationships between lengths and offsets...

7.5CVSS6.8AI score0.02667EPSS
Exploits0References1
OSV
OSV
added 2017/01/25 9:59 p.m.4 views

UBUNTU-CVE-2017-5596

In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow...

7.5CVSS7.2AI score0.029EPSS
Exploits0References6
Richard Bejtlich's blog
Richard Bejtlich's blog
added 2016/12/18 4:56 p.m.18 views

Check Out My TeePublic Designs

Over the years fans of this blog have asked if I would consider selling merchandise with the TaoSecurity logo. When I taught classes for TaoSecurity from 2005-2007 I designed T-shirts for my students and provided them as part of the registration package. This weekend I decided to exercise my...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2016/11/03 2:30 p.m.26 views

Sniffles - Packet Capture Generator for IDS and Regular Expression Evaluation

Sniffles is a tool for creating packet captures that will test IDS that use fixed patterns or regular expressions for detecting suspicious behavior. Sniffles works very simply. It takes a set of regular expressions or rules and randomly chooses one regular expression or rule. It then generates...

6.8AI score
Exploits0References1
Kitploit
Kitploit
added 2016/05/05 10:30 p.m.41 views

Skydive - An Open Source Real-Time Network Topology and Protocols Analyzer

Skydive is an open source real-time network topology and protocols analyzer. It aims to provide a comprehensive way of understanding what is happening in the network infrastructure. Skydive agents collect topology informations and flows and forward them to a central agent for further analysis. Al...

7.5AI score
Exploits0References2
n0where
n0where
added 2016/04/17 11:49 p.m.43 views

Open Source Real Time Network Analyzer: skydive

Open Source Real Time Network Topology and Protocols Analyzer Skydive is an open source real-time network topology and protocols analyzer. It aims to provide a comprehensive way of understanding what is happening in the network infrastructure. Skydive agents collect topology informations and flow...

7.5AI score
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

MS Virtual Machine 2000/3100/3200/3300 Series com.ms.activeX.ActiveXComponent Arbitrary Program Execution

No description provided by source. source: http://www.securityfocus.com/bid/1754/info If a malicious website operator were to embed a specially crafted java object into a HTML document, it would be possible to execute arbitrary programs on a target host viewing the webpage through either Microsof...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2014/01/14 4:39 a.m.27 views

[Xplico 1.1.0] Open Source Network Forensic Analysis Tool (NFAT)

The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email POP, IMAP, and SMTP protocols, all HTTP contents, each VoIP call SIP, FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer. Xplico is ...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2011/10/07 1:27 a.m.7 views

WebCookiesSniffer - New cookies sniffer/viewer utility

WebCookiesSniffer - New cookies sniffer/viewer utility WebCookiesSniffer is a new packet sniffer utility that captures all web site cookies sent between the web browser and the web server and displays them in a simple cookies table. The upper pane of WebCookiesSniffer displays the cookie string...

7.2AI score
Exploits0
RedHat Linux
RedHat Linux
added 2011/03/21 7:38 p.m.92 views

wireshark: heap-based buffer overflow in wireshark < 1.2 when reading malformed capture files

Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted capture file...

9.3CVSS6.5AI score0.04958EPSS
Exploits0References4
ALT Linux
ALT Linux
added 2007/12/23 12:0 a.m.19 views

Security fix for the ALT Linux 9 package wireshark version 0.99.7-alt1

Dec. 23, 2007 Sir Raorn 0.99.7-alt1 - 0.99.7 + CVE-2007-6451 + CVE-2007-6450 + CVE-2007-6441 + CVE-2007-6439 + CVE-2007-6438 + CVE-2007-6121 + CVE-2007-6120 + CVE-2007-6119 + CVE-2007-6118 + CVE-2007-6117 + CVE-2007-6116 + CVE-2007-6115 + CVE-2007-6114 + CVE-2007-6113 + CVE-2007-6112 +...

10CVSS7.1AI score0.06981EPSS
Exploits0
Packet Storm
Packet Storm
added 2006/01/10 12:0 a.m.32 views

aolXSS.txt

Title: AOL Multiple Cross Site Scripting Author: Simo Ben youssef aka 6mOHaCk Discovered: 26 December 2005 Published: 7 January 2006 MorX Security Research Team http://www.morx.org Service: Web Vendor: AOL.com Vulnerability: Cross Site Scripting / Cookie-Theft / Relogin attacks Severity:...

7.4AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2005/08/19 12:0 a.m.42 views

Kismet: Multiple vulnerabilities

Background Kismet is an 802.11 Layer 2 wireless network detector, sniffer, and intrusion detection system. Description Kismet is vulnerable to a heap overflow when handling pcap captures and to an integer underflow in the CDP protocol dissector. Impact With a specially crafted packet an attacker...

10CVSS7.4AI score0.04733EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/08/19 12:0 a.m.22 views

GLSA-200508-10 : Kismet: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200508-10 Kismet: Multiple vulnerabilities Kismet is vulnerable to a heap overflow when handling pcap captures and to an integer underflow in the CDP protocol dissector. Impact : With a specially crafted packet an attacker could...

10CVSS6.1AI score0.04733EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2004/03/17 5:20 p.m.6 views

security flaw

Multiple stack-based buffer overflows in 1 modalias and 2 modrewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service crash or execute arbitrary code via a regular expression with more than 9 captures...

7.2CVSS6.5AI score0.1273EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2004/01/14 1:12 p.m.5 views

security flaw

Multiple stack-based buffer overflows in 1 modalias and 2 modrewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service crash or execute arbitrary code via a regular expression with more than 9 captures...

7.2CVSS6.5AI score0.1273EPSS
Exploits0References4
OSV
OSV
added 2003/11/03 5:0 a.m.4 views

DEBIAN-CVE-2003-0542

Multiple stack-based buffer overflows in 1 modalias and 2 modrewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service crash or execute arbitrary code via a regular expression with more than 9 captures...

7.2CVSS7.6AI score0.1273EPSS
Exploits0References1
Rows per page
Query Builder