4 matches found
SUSE CVE-2014-5162
The readnewline function in wiretap/catapultdct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service off-by-one buffer underflow and application crash via a crafted...
Wireshark 2.0.x < 2.0.6 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.0.6. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.0.6 advisory. - epan/dissectors/packet-ipmi-trace.c in the IPMI trace dissector in Wireshark 2.x before 2.0.6 does not...
DEBIAN-CVE-2016-7179
Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 allows remote attackers to cause a denial of service application crash via a crafted packet...
Oracle Solaris Third-Party Patch Update : wireshark (multiple_buffer_errors_vulnerabilities_in3)
The remote Solaris system is missing necessary patches to address security updates : - The dissectlog function in plugins/irda/packet-irda.c in the IrDA dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' characters, which allows remote attackers to cause a denial of service...