17 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-5162
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r'...
Debian: Security Advisory (DLA-38-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2014-0326)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201409-01
Gentoo Linux Local Security Checks GLSA 201409-01 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
openSUSE Security Update : wireshark (openSUSE-SU-2014:1038-1)
This wireshark version update to 1.10.9 fixes the following security issues : - fixes several crashes triggered by malformed protocol packages - The Catapult DCT2000 and IrDA dissectors could underrun a buffer wnpa-sec-2014-08 CVE-2014-5161 CVE-2014-5162 bnc889901 - The GSM Management dissector...
DLA-38-1 wireshark - security update
Bulletin has no description...
Updated wireshark package fix security vulnerabilities
The Catapult DCT2000 and IrDA dissectors could underrun a buffer CVE-2014-5161, CVE-2014-5162. The GSM Management dissector could crash CVE-2014-5163. The RLC dissector could crash CVE-2014-5164. The ASN.1 BER dissector could crash CVE-2014-5165. The wireshark package has been updated to version...
[ MDVSA-2014:159 ] wireshark
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:159 http://www.mandriva.com/en/support/security/ Package : wireshark Date : August 8, 2014 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in...
Mandriva Linux Security Advisory : wireshark (MDVSA-2014:159)
Multiple vulnerabilities has been discovered and corrected in wireshark : - The Catapult DCT2000 and IrDA dissectors could underrun a buffer CVE-2014-5161, CVE-2014-5162. - The GTP and GSM Management dissectors could crash CVE-2014-5163. - The RLC dissector could crash CVE-2014-5164. - The ASN.1...
Fedora Update for wireshark FEDORA-2014-9112
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : wireshark-1.10.9-1.fc20 (2014-9112)
Ver. 1.10.9; Security fix for CVE-2014-5164, CVE-2014-5165, CVE-2014-5163, CVE-2014-5161, CVE-2014-5162 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much a...
Wireshark Multiple Denial of Service Vulnerabilities-01 (Aug 2014) - Windows
Wireshark is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
CVE-2014-5162
Wireshark 1.10.x before 1.10.9 is affected by CVE-2014-5162 in the Catapult DCT2000 dissector (wiretap/catapult_dct2000.c). The read_new_line function does not properly strip '\n' and '\r', enabling a remote attacker to cause a denial of service via a crafted packet (off-by-one buffer underflow l...
KLA10400 DoS vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities 1. Improper handling of n and r symbols can be exploited remotely via a specially designed packet; 2. Improper...