12 matches found
Denial Of Service (DoS)
wireshark is vulnerable to Denial of Service DoS attacks. Infinite loop in GDSDB allows a remote attacker to cause denial of service conditions via packet injection or crafted capture file...
Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-197)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-197 advisory. Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version between 4.0.0 to 4.0.5, by default, is susceptible to a heap-based buffer overflow, and...
OESA-2023-1321 wireshark security update
Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless WiFi or Bluetooth networks, USB devices,and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful featur...
CVE-2023-2879
A vulnerability was found in wireshark. This issue occurs in the GDSDB dissector, and could go into an infinite loop. It may be possible to make Wireshark consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file...
CVE-2023-2879
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file...
CVE-2023-2879
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file...
UBUNTU-CVE-2023-2879
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file...
Design/Logic Flaw
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file...
PT-2023-21965 · Wireshark +3 · Wireshark +3
Name of the Vulnerable Software and Affected Versions: Wireshark versions 3.6.0 through 3.6.13 Wireshark versions 4.0.0 through 4.0.5 Description: The issue allows for denial of service through packet injection or a crafted capture file, caused by an infinite loop in the GDSDB. Recommendations: F...
CVE-2023-2879
CVE-2023-2879 affects Wireshark’s GDSDB dissector, causing an infinite loop and denial of service when processing certain packets or capture files. The vulnerability exists in Wireshark 4.0.0–4.0.5 and 3.6.0–3.6.13. Connected advisories confirm the issue and note that fixes have been released (e....
CVE-2023-2879
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file...
CVE-2023-2879
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file...