Astra Linux - уязвимость в wireshark

In Wireshark versions 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This issue was addressed in the epan/dissectors/packet-bacapp.c file by limiting the amount of recursion...

EUVD-2013-3493

Malware in sbrugna...

EUVD-2014-8545

Malware in sbrugna...

EUVD-2018-19059

Malware in sbrugna...

SUSE CVE-2012-0041

The dissectpacket function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service application crash via a long packet in a capture file, as demonstrated by an airopeek file...

SUSE CVE-2016-9376

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflowv5.c by ensuring that certain length values were sufficiently large...

SUSE CVE-2018-7324

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type...

UBUNTU-CVE-2018-16057

In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Radiotap dissector could crash. This was addressed in epan/dissectors/packet-ieee80211-radiotap-iter.c by validating iterator operations...

UBUNTU-CVE-2018-16056

In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth Attribute Protocol dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by verifying that a dissector for a specific UUID exists...

CVE-2018-7323

CVE-2018-7323 affects Wireshark 2.4.0–2.4.4 and 2.2.0–2.2.12; the epan/dissectors/packet-wccp.c dissector contained a large loop that could be mitigated by ensuring that a calculated length increases monotonically. The connected documents confirm the vulnerability and describe the remediation as ...

CVE-2018-7328

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-usb.c had an infinite loop that was addressed by rejecting short frame header lengths...

CVE-2018-7321

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not proceeding with dissection after encountering an unexpected type...

UBUNTU-CVE-2017-15192

In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by considering a case where not all of the BTATT packets have the same encapsulation level...

sharkPy - NSA Tool to Dissect, Analyze, and Interact with Network Packet Data using Wireshark and libpcap capabilities

A python module to dissect, analyze, and interact with network packet data as native Python objects using Wireshark and libpcap capabilities. sharkPy dissect modules extend and otherwise modify Wireshark's tshark. SharkPy packet injection and pcap file writing modules wrap useful libpcap...

CVE-2016-4419

Wireshark SPICE dissector (epan/dissectors/packet-spice.c) in Wireshark 2.x is vulnerable to a denial-of-service via crafted packets that mishandle capability data. The issue affects Wireshark versions prior to 2.0.2, enabling a large-loop condition when processing SPICE data in the SPICE parser....

CVE-2015-8727

The dissectrsvpcommon function in epan/dissectors/packet-rsvp.c in the RSVP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not properly maintain request-key data, which allows remote attackers to cause a denial of service use-after-free and application crash via a crafted...

Wireshark 'epan/packet.c' Remote Denial of Service Vulnerability

Wireshark formerly known as Ethereal is a suite of network packet analysis software developed by the Wireshark team. A security vulnerability exists in the dissector-table implementation in the epan/packet.c file in Wireshark versions 1.12.7 prior to 1.12.x. The vulnerability can be exploited to...

CVE-2015-0560

The dissectwccp2r1addresstableinfo function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 does not initialize certain data structures, which allows remote attackers to cause a denial of service application crash via a crafted...

Wireshark SMTP parser 'packet-smtp.c' remote denial of service vulnerability

Wireshark is an open source network protocol analysis tool. A remote denial of service vulnerability exists in Wireshark SMTP Dissector 'packet-smtp.c', which can be exploited by an attacker to crash the affected application and deny service to legitimate users...

UBUNTU-CVE-2013-4935

The dissectperlengthdeterminant function in epan/dissectors/packet-per.c in the ASN.1 PER dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize a length field in certain abnormal situations, which allows remote attackers to cause a denial of service application...