Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2026/02/25 6:44 p.m.7 views

CVE-2026-3203

A flaw was found in the RF4CE Profile dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing a buffer over-read, resulting in a denial of service. Mitigation If the RF4CE Profile protocol dissector is not being used, it can be disable...

7.5CVSS5.6AI score0.00157EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/09/22 12:0 a.m.5 views

CVE-2025-51006

Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dltlinuxsll2cleanup function in plugins/dltlinuxsll2/linuxsll2.c. This vulnerability is triggered when tcpeditdltcleanup indirectly invokes the cleanup routine multiple times on the same memory region. By...

6.4AI score0.00172EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/01/30 1:28 p.m.5 views

tcpslice: use-after-free in extract_slice()

A heap use-after-free flaw was found in tcpslices' extractslice. This flaw allows an attacker with local network access to pass a specially crafted 'pcap' file to tcpslice, causing segmentation fault. This vulnerability halts or crashes the application, leading to a denial of service...

5.5CVSS6AI score0.0087EPSS
Exploits1References5
NVD
NVD
added 2023/12/06 8:15 p.m.17 views

CVE-2023-48123

An issue in Netgate pfSense Plus v.23.05.1 and before and pfSense CE v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the packetcapture.php file...

8.8CVSS0.67848EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/09/20 12:0 a.m.5 views

D-LINK DWL-6610 Command Injection Vulnerability

The D-Link DWL-6610 is a wireless access point from D-Link. A security vulnerability exists in the D-LINK DWL-6610, which originates from a command injection vulnerability in the function pcapdownloadhandler. An attacker can use this vulnerability to execute arbitrary commands via the...

9.8CVSS8.2AI score0.0231EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2022/04/05 12:0 a.m.6 views

The vulnerability of the randomize_iparp function in the edit_packet.c component of the editing and replaying utility Pcap Tcpreplay allows a hacker to cause a service failure.

The vulnerability of the randomizeiparp function in the editpacket.c component of the Pcap editing and replay utility Tcpreplay is related to writing beyond buffer boundaries. Exploiting this vulnerability allows a malicious actor to cause service interruptions using a specially created pcap file...

7.1CVSS6.8AI score0.00632EPSS
Exploits1References6Affected Software2
RedHat Linux
RedHat Linux
added 2020/11/04 1:47 a.m.6 views

tcpdump: Buffer over-read in ospf6_print_lshdr() function in print-ospf6.c

An out-of-bounds read vulnerability was discovered in tcpdump while printing OSPFv3 packets captured in a pcap file or coming from the network. A remote attacker may abuse this flaw by sending specially crafted packets that, when printed, would trigger the flaw and crash the application...

7.5CVSS6.4AI score0.05342EPSS
Exploits0References4
CNVD
CNVD
added 2018/07/18 12:0 a.m.22 views

pdns buffer error vulnerability

pdns is a cross-platform open source DNS service component . A buffer overflow vulnerability exists in pdns versions prior to 4.1.2. An attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service crash with the help of a specially crafted PCAP file...

9.3CVSS7.5AI score0.01411EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/08 12:0 a.m.3 views

Xplico Arbitrary Command Execution Vulnerability

Xplico is an open source network forensic analysis tool. A security vulnerability exists in versions of Xplico prior to 1.2.1. A remote attacker can exploit this vulnerability to execute arbitrary commands with the help of shell metacharacters in the name of an uploaded PCAP file...

9CVSS7.6AI score0.80098EPSS
Exploits7References1
RedHat Linux
RedHat Linux
added 2017/08/01 12:0 p.m.6 views

tcpdump: multiple overflow issues in protocol decoding

Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...

9.8CVSS7.4AI score0.03355EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/08/01 12:0 p.m.10 views

tcpdump: multiple overflow issues in protocol decoding

Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...

9.8CVSS7.4AI score0.03903EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/08/01 12:0 p.m.11 views

tcpdump: multiple overflow issues in protocol decoding

Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...

9.8CVSS7.4AI score0.03086EPSS
Exploits0References4
CNVD
CNVD
added 2016/09/08 12:0 a.m.5 views

Fortinet FortiWAN Authentication Bypass Vulnerability

Fortinet FortiWAN is a WAN link load balancing product developed by Fortinet. A security vulnerability exists in the tcpdump function in the diagnosiscontrol.php page in Fortinet FortiWAN. An attacker can exploit this vulnerability by changing the HTTP Get parameter 'UserName' to 'Administrator' ...

6.5CVSS7AI score0.02202EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2010/01/10 12:0 a.m.40 views

Wireshark -- Multiple vulnerabilities

Wireshark reports: Laurent Butti discovered that Wireshark failed to properly check record sizes for many packet capture file formats Wireshark could dereference a NULL pointer and crash. The RLC dissector could overflow a buffer...

4.3CVSS6.6AI score0.06597EPSS
Exploits3References11
Positive Technologies
Positive Technologies
added 1999/07/30 12:0 a.m.5 views

PT-1999-1615 · Ethereal · Ethereal

Name of the Vulnerable Software and Affected Versions: Ethereal affected versions not specified Description: The issue allows local users to overwrite arbitrary files via a symlink attack on the packet capture file. Recommendations: At the moment, there is no information about a newer version tha...

7.2CVSS6.1AI score0.00346EPSS
Exploits0References4
Rows per page
Query Builder