10 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-8720
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dissectberGeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly...
SUSE CVE-2015-8720
The dissectberGeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly checks an sscanf return value, which allows remote attackers to cause a denial of service application crash via a crafted packet...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2016:0109-1)
This update contains Wireshark 1.12.9 and fixes the following issues : - CVE-2015-7830: pcapng file parser could crash while copying an interface filter bsc950437 - CVE-2015-8711: epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not...
Wireshark Multiple DoS Vulnerabilities (wnpa-sec-2015-41, wnpa-sec-2015-45) - Mac OS X
Wireshark is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Wireshark Multiple DoS Vulnerabilities (wnpa-sec-2015-41, wnpa-sec-2015-45) - Windows
Wireshark is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
openSUSE Security Update : wireshark (openSUSE-2016-12)
Wireshark was updated to 1.12.9 to fix a number of crashes in protocol dissectors. boo960382 - CVE-2015-8711: epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate conversation data, which allows remote attackers to cause a...
CVE-2015-8720
The dissectberGeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly checks an sscanf return value, which allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2015-8720
The dissectberGeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly checks an sscanf return value, which allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2015-8720
The dissectberGeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly checks an sscanf return value, which allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2015-8720
Wireshark CVE-2015-8720: The BER dissector’s dissect_ber_GeneralizedTime (epan/dissectors/packet-ber.c) poorly checks sscanf, enabling denial of service (crash) via crafted packets. Affected: Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1. Remediation: upgrade to 1.12.9+ or 2.0.1+ (or newe...