8 matches found
Wireshark 2.0.x < 2.0.14 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 2.0.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.0.14 advisory. - In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust system...
SUSE SLES11 Security Update : wireshark (SUSE-SU-2017:2032-1)
This wireshark update to version 2.2.8 fixes the following issues: Security issues fixed : - CVE-2017-11411: The openSAFETY dissectorcould crash or exhaust system memory because of missing length validation. bsc1049621 - CVE-2017-11410: The WBXML dissector could go into an infinite loop. bsc10492...
[ASA-201707-28] wireshark-cli: denial of service
Arch Linux Security Advisory ASA-201707-28 ========================================== Severity: Low Date : 2017-07-26 CVE-ID : CVE-2017-11406 CVE-2017-11407 CVE-2017-11408 CVE-2017-11410 CVE-2017-11411 Package : wireshark-cli Type : denial of service Remote : Yes Link :...
Security fix for the ALT Linux 9 package wireshark version 2.2.8-alt1
July 21, 2017 Anton Farygin 2.2.8-alt1 - new version: wnpa-sec-2017-13 WBMXL dissector infinite loop CVE-2017-7702, CVE-2017-11410 wnpa-sec-2017-28 openSAFETY dissector memory exhaustion CVE-2017-9350, CVE-2017-11411 wnpa-sec-2017-34 AMQP dissector crash CVE-2017-11408 wnpa-sec-2017-35 MQ dissect...
Wireshark Multiple DoS Vulnerabilities (Jul 2017) - Mac OS X
wireshark is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2017-11411
In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-opensafety.c by adding length validation. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9350...
CVE-2017-11411
CVE-2017-11411 affects Wireshark’s openSAFETY dissector. The issue allowed a crafted packet to cause memory exhaustion, leading to a denial of service, and is described as the result of an incomplete fix for CVE-2017-9350. Public references in the Connected document set show upstream mitigation: ...
KLA11072 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause a denial of service. Below is a complete list of vulnerabilities: 1. Multiple unspecified vulnerabilities in the AMQP and MQ dissectors can be exploited remotely via a special...