Lucene search
+L

117 matches found

RedHat Linux
RedHat Linux
added 2020/03/31 9:5 p.m.21 views

wireshark: Out-of-bounds read in packet-ldss.c

A heap-based buffer overflow was found in the wireshark module responsible for analyzing the LDSS protocol. An attacker could create a malicious LDSS message to cause a remote denial of service, crashing the application...

7.5CVSS6.9AI score0.0312EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/02/24 12:0 a.m.43 views

EulerOS 2.0 SP5 : wireshark (EulerOS-SA-2020-1139)

According to the versions of the wireshark packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by...

7.5CVSS6.8AI score0.05803EPSS
Exploits5References6
RedhatCVE
RedhatCVE
added 2019/05/14 11:56 a.m.22 views

CVE-2019-10901

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly...

7.5CVSS0.9AI score0.05592EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.37 views

openSUSE Security Update : wireshark (openSUSE-2019-1390)

This update for wireshark to version 2.4.14 fixes the following issues : Security issues fixed : - CVE-2019-10895: NetScaler file parser crash. - CVE-2019-10899: SRVLOC dissector crash. - CVE-2019-10894: GSS-API dissector crash. - CVE-2019-10896: DOF dissector crash. - CVE-2019-10901: LDSS...

7.5CVSS7AI score0.05803EPSS
Exploits8References13
OPENSUSE Linux
OPENSUSE Linux
added 2019/05/13 12:0 a.m.166 views

Security update for wireshark (moderate)

openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2019:1390-1 Rating: moderate References: 1127367 1127369 1127370 1131945 Cross-References: CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10899 CVE-2019-10901 CVE-2019-10903 CVE-2019-9208 CVE-2019-9209...

7.5CVSS7.1AI score0.05803EPSS
Exploits8References4
Tenable Nessus
Tenable Nessus
added 2019/05/10 12:0 a.m.34 views

openSUSE Security Update : wireshark (openSUSE-2019-1356)

This update for wireshark to version 2.4.14 fixes the following issues : Security issues fixed : - CVE-2019-10895: NetScaler file parser crash. - CVE-2019-10899: SRVLOC dissector crash. - CVE-2019-10894: GSS-API dissector crash. - CVE-2019-10896: DOF dissector crash. - CVE-2019-10901: LDSS...

7.5CVSS6.7AI score0.05803EPSS
Exploits6References7
Tenable Nessus
Tenable Nessus
added 2019/04/26 12:0 a.m.38 views

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2019:1038-1)

This update for wireshark to version 2.4.14 fixes the following issues : Security issues fixed : CVE-2019-10895: NetScaler file parser crash. CVE-2019-10899: SRVLOC dissector crash. CVE-2019-10894: GSS-API dissector crash. CVE-2019-10896: DOF dissector crash. CVE-2019-10901: LDSS dissector crash...

7.5CVSS6.7AI score0.05803EPSS
Exploits6References14
Tenable Nessus
Tenable Nessus
added 2019/04/18 12:0 a.m.31 views

Wireshark 2.4.x < 2.4.14 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.4.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.14 advisory. - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. Th...

7.5CVSS6.9AI score0.05803EPSS
Exploits6References19
Tenable Nessus
Tenable Nessus
added 2019/04/18 12:0 a.m.27 views

Wireshark 2.6.x < 2.6.8 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.6.8. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.6.8 advisory. - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was...

7.5CVSS6.9AI score0.05803EPSS
Exploits6References19
Tenable Nessus
Tenable Nessus
added 2019/04/18 12:0 a.m.65 views

Wireshark 3.0.x < 3.0.1 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 3.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.0.1 advisory. - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was...

7.5CVSS6.9AI score0.05803EPSS
Exploits10References31
OpenVAS
OpenVAS
added 2019/04/12 12:0 a.m.37 views

Wireshark 2.4.14, 2.6.8, 3.0.1 Security Updates (Apr 2019) - Mac OS X

Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...

7.5CVSS7.8AI score0.05803EPSS
Exploits6References6
OpenVAS
OpenVAS
added 2019/04/12 12:0 a.m.33 views

Wireshark 2.4.14, 2.6.8, 3.0.1 Security Updates (Apr 2019) - Windows

Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...

7.5CVSS7.8AI score0.05803EPSS
Exploits6References6
ALT Linux
ALT Linux
added 2019/04/10 12:0 a.m.149 views

Security fix for the ALT Linux 9 package wireshark version 3.0.1-alt1

April 10, 2019 Anton Farygin 3.0.1-alt1 - 3.0.1 - fixes: NetScaler file parser crash. CVE-2019-10895 SRVLOC dissector crash. CVE-2019-10899 IEEE 802.11 dissector infinite loop. CVE-2019-10897 GSUP dissector infinite loop. CVE-2019-10898 Rbm dissector infinite loop. CVE-2019-10900 GSS-API dissecto...

5CVSS7.6AI score0.05803EPSS
Exploits10
NVD
NVD
added 2019/04/09 4:29 a.m.20 views

CVE-2019-10901

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly...

7.5CVSS7.3AI score0.05592EPSS
Exploits1References12
OSV
OSV
added 2019/04/09 4:29 a.m.25 views

CVE-2019-10901

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly...

7.5CVSS6.4AI score
Exploits0References12
OSV
OSV
added 2019/04/09 4:29 a.m.4 views

DEBIAN-CVE-2019-10901

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly...

7.5CVSS8.8AI score0.05592EPSS
Exploits1References1
Prion
Prion
added 2019/04/09 4:29 a.m.27 views

Code injection

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly...

5CVSS7.2AI score0.05592EPSS
Exploits1References12Affected Software5
Debian CVE
Debian CVE
added 2019/04/09 3:53 a.m.51 views

CVE-2019-10901

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly...

7.5CVSS0.9AI score0.05592EPSS
Exploits1
CVE
CVE
added 2019/04/09 3:53 a.m.242 views

CVE-2019-10901

CVE-2019-10901 : In Wireshark, the LDSS dissector could crash for versions 2.4.0–2.4.13, 2.6.0–2.6.7, and 3.0.0. The issue was addressed by fixing how file digests are handled in epan/dissectors/packet-ldss.c. Connected advisories confirm the LDSS dissector crash and reference the same fix, suppo...

7.5CVSS7.2AI score0.05592EPSS
Exploits1References12Affected Software1
EUVD
EUVD
added 2019/04/09 3:53 a.m.7 views

EUVD-2019-2623

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly...

7.5CVSS6.7AI score0.05592EPSS
Exploits1References14
Rows per page
Query Builder