10 matches found
EUVD-2013-2434
Malware in sbrugna...
EUVD-2013-1622
Malware in sbrugna...
SUSE CVE-2013-1586
The fragmentsettotlen function in epan/reassemble.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly determine the length of a reassembled packet for the DTLS dissector, which allows remote attackers to cause a denial of service application crash via a malformed packet...
SUSE CVE-2013-2488
The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service application crash via a large offset value that triggers write access to an...
SuSE 11.2 Security Update : wireshark (SAT Patch Number 7490)
wireshark has been updated to 1.8.6 which fixes bugs and security issues : Vulnerabilities fixed : - The TCP dissector could crash. wnpa-sec-2013-10. CVE-2013-2475 - The HART/IP dissectory could go into an infinite loop. wnpa-sec-2013-11. CVE-2013-2476 - The CSN.1 dissector could crash...
CVE-2013-2488
The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service application crash via a large offset value that triggers write access to an...
CVE-2013-2488
The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service application crash via a large offset value that triggers write access to an...
SuSE 11.2 Security Update : wireshark (SAT Patch Number 7317)
wireshark was updated to 1.8.5 bnc801131, fixing bugs and security issues : The following vulnerabilities have been fixed : - Infinite and large loops in the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors wnpa-sec-2013-01...
Code injection
The fragmentsettotlen function in epan/reassemble.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly determine the length of a reassembled packet for the DTLS dissector, which allows remote attackers to cause a denial of service application crash via a malformed packet...
CVE-2013-1586
CVE-2013-1586 affects Wireshark DTLS dissector: the fragment_set_tot_len logic in epan/reassemble.c fails to correctly determine the length of a reassembled packet, enabling a remote attacker to crash the application (DoS). Affected products/versions include Wireshark 1.6.x before 1.6.13 and 1.8....