9 matches found
Oracle Solaris Third-Party Patch Update : wireshark (cve_2014_4020_numeric_errors)
The remote Solaris system is missing necessary patches to address security updates : - The dissectframe function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent ...
Wireshark 'Frame Metadissector' Denial of Service Vulnerability - Windows
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
Wireshark 'Frame Metadissector' Denial of Service Vulnerability - Mac OS X
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
Fedora Update for wireshark FEDORA-2014-7359
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-201406-33 : Wireshark: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201406-33 Wireshark: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Wireshark. Please review the CVE identifiers referenced below for details. Impact : A remote attacker can cause arbitrary code executio...
openSUSE Security Update : wireshark (openSUSE-SU-2014:0836-1)
wireshark was updated to version 1.10.8 to fix a possible DoS in the frame metadissector CVE-2014-4020. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-440. The text description ...
MGASA-2014-0264 Updated wireshark packages fix CVE-2014-4020
Updated wireshark packages fix security vulnerabilities: The frame metadissector could crash CVE-2014-4020...
CVE-2014-4020
The dissectframe function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent an error condition, which allows remote attackers to cause a denial of service...
CVE-2014-4020
Wireshark 1.10.x before 1.10.8 is vulnerable in the Frame Metadissector (dissect_frame in epan/dissectors/packet-frame.c): it treats a negative integer as a length value, ignoring the error condition, enabling a remote attacker to crash the application (DoS). A fix is to upgrade to Wireshark 1.10...