9 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-2907
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The srtpaddaddress function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not properly update SRTP conversation...
Oracle Solaris Third-Party Patch Update : wireshark (cve_2014_2907_denial_of)
The remote Solaris system is missing necessary patches to address security updates : - The srtpaddaddress function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not properly update SRTP conversation data, which allows remote attackers to cause a denia...
GLSA-201406-33 : Wireshark: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201406-33 Wireshark: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Wireshark. Please review the CVE identifiers referenced below for details. Impact : A remote attacker can cause arbitrary code executio...
openSUSE Security Update : wireshark (openSUSE-SU-2014:0612-1)
This wireshark update to version 1.10.7 fixes the following security issue : - bnc874760: Fixed RTP dissector vulnerabilities CVE-2014-2907. - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.7 .html %NASLMINLEVEL 70300 C Tenable...
Wireshark RTP Dissector Denial of Service Vulnerability-01 (May 2014) - Mac OS X
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
Wireshark RTP Dissector Denial of Service Vulnerability-01 (May 2014) - Windows
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
Updated wireshark package fixes CVE-2014-2907
Updated wireshark packages fix security vulnerabilities: The RTP dissector could crash CVE-2014-2907. This update provides Wireshark version 1.10.7, which fixes this security issue, as well as several other bugs...
CVE-2014-2907
The srtpaddaddress function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not properly update SRTP conversation data, which allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2014-2907
Wireshark 1.10.x before 1.10.7 is affected. The srtp_add_address function in epan/dissectors/packet-rtp.c does not properly update SRTP conversation data, allowing remote attackers to cause a denial of service (application crash) via a crafted RTP packet. Remediation: upgrade to Wireshark 1.10.7 ...