Lucene search
K

61 matches found

OSV
OSV
added 2017/06/02 5:29 a.m.3 views

DEBIAN-CVE-2017-9348

In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-dof.c by validating a size value...

7.5CVSS7.7AI score0.02724EPSS
Exploits0References1
CVE
CVE
added 2017/06/02 5:4 a.m.106 views

CVE-2017-9348

CVE-2017-9348 – Wireshark DOF dissector buffer-read issue was caused by reading past the end of a buffer due to missing validation of a size value. Affected range: Wireshark 2.2.0 to 2.2.6. The root cause is inadequate size validation in the DOF dissector (epan/dissectors/packet-dof.c), which cou...

7.5CVSS7.1AI score0.02724EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2017/06/02 5:4 a.m.31 views

CVE-2017-9348

In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-dof.c by validating a size value...

7.2AI score0.02724EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2017/06/02 5:4 a.m.65 views

CVE-2017-9348

In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-dof.c by validating a size value...

7.5CVSS7.3AI score0.02724EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/06/02 5:4 a.m.37 views

CVE-2017-9348

In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-dof.c by validating a size value...

7.5CVSS2.5AI score0.02724EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/06/02 12:0 a.m.30 views

Wireshark Multiple Denial-of-Service Vulnerabilities-02 (Jun 2017) - Windows

Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...

7.5CVSS8.5AI score0.14207EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2017/05/31 12:0 a.m.46 views

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2017:1442-1)

Wireshark was updated to version 2.2.6, which brings several new features, enhancements and bug fixes. Thses security issues were fixed : - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...

9.8CVSS8.6AI score0.08767EPSS
Exploits0References77
Tenable Nessus
Tenable Nessus
added 2017/04/18 12:0 a.m.60 views

Wireshark 2.2.x < 2.2.6 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.2.6. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.6 advisory. - In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite...

7.8CVSS7AI score0.03284EPSS
Exploits0References29
Tenable Nessus
Tenable Nessus
added 2017/04/18 12:0 a.m.57 views

Wireshark 2.2.x < 2.2.6 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.2.6. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.6 advisory. - In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite loop,...

7.8CVSS7AI score0.03284EPSS
Exploits0References29
CNVD
CNVD
added 2017/04/17 12:0 a.m.4 views

Wireshark DOF Dissector 'packet-dof.c' Infinite Loop Denial of Service Vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. Wireshark is prone to a remote denial-of-service vulnerability.Attackers can exploit thi...

7.8CVSS8.2AI score0.02709EPSS
Exploits0References1
ALT Linux
ALT Linux
added 2017/04/14 12:0 a.m.88 views

Security fix for the ALT Linux 9 package wireshark version 2.2.6-alt1

April 14, 2017 Anton Farygin 2.2.6-alt1 - new version with these security fixes: wnpa-sec-2017-12 IMAP dissector crash CVE-2017-7703 wnpa-sec-2017-13 WBMXL dissector infinite loop CVE-2017-7702 wnpa-sec-2017-14 NetScaler file parser infinite loop CVE-2017-7700 wnpa-sec-2017-15 RPCoRDMA dissector...

7.8CVSS7.6AI score0.03284EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2017/04/13 9:18 a.m.27 views

CVE-2017-7704

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...

7.8CVSS7.6AI score0.02709EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/04/12 11:59 p.m.25 views

CVE-2017-7704

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...

7.8CVSS7.1AI score0.02709EPSS
Exploits0References5
OSV
OSV
added 2017/04/12 11:59 p.m.23 views

CVE-2017-7704

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...

7.5CVSS6.8AI score
Exploits0References7
NVD
NVD
added 2017/04/12 11:59 p.m.17 views

CVE-2017-7704

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...

7.8CVSS7.5AI score0.02709EPSS
Exploits0References7
Prion
Prion
added 2017/04/12 11:59 p.m.17 views

Design/Logic Flaw

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...

7.8CVSS7.3AI score0.02709EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2017/04/12 11:0 p.m.20 views

CVE-2017-7704

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...

7.5AI score0.02709EPSS
Exploits0References7
CVE
CVE
added 2017/04/12 11:0 p.m.114 views

CVE-2017-7704

In Wireshark 2.2.0–2.2.5, CVE-2017-7704 describes an infinite loop in the DOF dissector triggered by crafted packets or malformed captures. The fix, implemented in epan/dissectors/packet-dof.c, involved using a different integer data type and adjusting a return value to prevent the loop.

7.8CVSS7.4AI score0.02709EPSS
Exploits0References7Affected Software1
AlpineLinux
AlpineLinux
added 2017/04/12 11:0 p.m.544 views

CVE-2017-7704

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...

7.8CVSS7.6AI score0.02709EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/04/12 11:0 p.m.30 views

CVE-2017-7704

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value...

7.8CVSS3AI score0.02709EPSS
Exploits0
Rows per page
Query Builder