15 matches found
CVE-2026-3203
A flaw was found in the RF4CE Profile dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing a buffer over-read, resulting in a denial of service. Mitigation If the RF4CE Profile protocol dissector is not being used, it can be disable...
CVE-2025-51006
Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dltlinuxsll2cleanup function in plugins/dltlinuxsll2/linuxsll2.c. This vulnerability is triggered when tcpeditdltcleanup indirectly invokes the cleanup routine multiple times on the same memory region. By...
tcpslice: use-after-free in extract_slice()
A heap use-after-free flaw was found in tcpslices' extractslice. This flaw allows an attacker with local network access to pass a specially crafted 'pcap' file to tcpslice, causing segmentation fault. This vulnerability halts or crashes the application, leading to a denial of service...
CVE-2023-48123
An issue in Netgate pfSense Plus v.23.05.1 and before and pfSense CE v.2.7.0 allows a remote attacker to execute arbitrary code via a crafted request to the packetcapture.php file...
D-LINK DWL-6610 Command Injection Vulnerability
The D-Link DWL-6610 is a wireless access point from D-Link. A security vulnerability exists in the D-LINK DWL-6610, which originates from a command injection vulnerability in the function pcapdownloadhandler. An attacker can use this vulnerability to execute arbitrary commands via the...
The vulnerability of the randomize_iparp function in the edit_packet.c component of the editing and replaying utility Pcap Tcpreplay allows a hacker to cause a service failure.
The vulnerability of the randomizeiparp function in the editpacket.c component of the Pcap editing and replay utility Tcpreplay is related to writing beyond buffer boundaries. Exploiting this vulnerability allows a malicious actor to cause service interruptions using a specially created pcap file...
tcpdump: Buffer over-read in ospf6_print_lshdr() function in print-ospf6.c
An out-of-bounds read vulnerability was discovered in tcpdump while printing OSPFv3 packets captured in a pcap file or coming from the network. A remote attacker may abuse this flaw by sending specially crafted packets that, when printed, would trigger the flaw and crash the application...
pdns buffer error vulnerability
pdns is a cross-platform open source DNS service component . A buffer overflow vulnerability exists in pdns versions prior to 4.1.2. An attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service crash with the help of a specially crafted PCAP file...
Xplico Arbitrary Command Execution Vulnerability
Xplico is an open source network forensic analysis tool. A security vulnerability exists in versions of Xplico prior to 1.2.1. A remote attacker can exploit this vulnerability to execute arbitrary commands with the help of shell metacharacters in the name of an uploaded PCAP file...
tcpdump: multiple overflow issues in protocol decoding
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...
tcpdump: multiple overflow issues in protocol decoding
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...
tcpdump: multiple overflow issues in protocol decoding
Multiple out of bounds read and integer overflow vulnerabilities were found in tcpdump affecting the decoding of various protocols. An attacker could create a crafted pcap file or send specially crafted packets to the network segment where tcpdump is running in live capture mode without -w which...
Fortinet FortiWAN Authentication Bypass Vulnerability
Fortinet FortiWAN is a WAN link load balancing product developed by Fortinet. A security vulnerability exists in the tcpdump function in the diagnosiscontrol.php page in Fortinet FortiWAN. An attacker can exploit this vulnerability by changing the HTTP Get parameter 'UserName' to 'Administrator' ...
Wireshark -- Multiple vulnerabilities
Wireshark reports: Laurent Butti discovered that Wireshark failed to properly check record sizes for many packet capture file formats Wireshark could dereference a NULL pointer and crash. The RLC dissector could overflow a buffer...
PT-1999-1615 · Ethereal · Ethereal
Name of the Vulnerable Software and Affected Versions: Ethereal affected versions not specified Description: The issue allows local users to overwrite arbitrary files via a symlink attack on the packet capture file. Recommendations: At the moment, there is no information about a newer version tha...