9 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-13766
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. This was addressed in...
SUSE: Security Advisory (SUSE-SU-2017:2555-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : 1:wireshark (2017-9fd430dba0)
New version 2.4.2, fixes CVE-2017-15189, CVE-2017-15190, CVE-2017-15191, CVE-2017-15192, CVE-2017-15193, CVE-2017-13764, CVE-2017-13765, CVE-2017-13766, CVE-2017-13767 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...
SUSE SLES11 Security Update : wireshark (SUSE-SU-2018:0054-1)
This update for wireshark to version 2.2.11 fixes several issues. These security issues were fixed : - CVE-2017-13767: The MSDP dissector could have gone into an infinite loop. This was addressed by adding length validation bsc1056248 - CVE-2017-13766: The Profinet I/O dissector could have crash...
SUSE-SU-2018:0054-1 Security update for wireshark
This update for wireshark to version 2.2.11 fixes several issues. These security issues were fixed: - CVE-2017-13767: The MSDP dissector could have gone into an infinite loop. This was addressed by adding length validation bsc1056248 - CVE-2017-13766: The Profinet I/O dissector could have crash...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2017:2555-1)
This update for wireshark to version 2.2.9 fixes several issues. These security issues were fixed : - CVE-2017-13767: The MSDP dissector could have gone into an infinite loop. This was addressed by adding length validation bsc1056248. - CVE-2017-13766: The Profinet I/O dissector could have crash...
Wireshark 'Profinet I/O' Dissector DoS Vulnerability - Windows
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
CVE-2017-13766
CVE-2017-13766 affects Wireshark 2.4.0 and 2.2.0–2.2.8, where the Profinet I/O dissector could crash due to an out-of-bounds write. The issue was addressed by adding string validation in plugins/profinet/packet-dcerpc-pn-io.c. This is the confirmed fix path; no exploitation details are provided i...
KLA11095 Denial of service vulnerability in Wireshark
A buffer overflow vulnerability was found in the Profinet I/O dissector in Wireshark. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via a specially designed packet, which is injected onto the wire, or by convincing a...