89 matches found
Wireshark Input Validation Error Vulnerability (CNVD-2022-11205)
Wireshark formerly known as Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. Wireshark suffers from an input validation error vulnerability that can be exploited by...
Wireshark Input Validation Error Vulnerability (CNVD-2021-91421)
Wireshark is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis.Wireshark suffers from an input validation error vulnerability that stems from insufficient validation in the Modbu...
Wireshark null pointer dereference vulnerability (CNVD-2021-94899)
Wireshark is a network packet analysis software. Wireshark uses WinPCAP as an interface to exchange data packets directly with the network card.A null pointer dereference vulnerability exists in the IPPUSB parser in Wireshark versions 3.4.0 - 3.4.9. An attacker could exploit this vulnerability to...
Netscaut nGeniusONE UploadFile Function Cross-Site Scripting Vulnerability
Netscout NgeniusOne is a centralized application and network performance management solution from Netscout, Inc. A cross-site scripting vulnerability exists in Netscaut nGeniusONE in version 6.3.0 build 1196 and earlier, which stems from a lack of user input validation and filtering of input data...
CVE-2021-25486
Exposure of information vulnerability in ipcdump prior to SMR Oct-2021 Release 1 allows an attacker detect device information via analyzing packet in log...
CVE-2021-25486
CVE-2021-25486 concerns an information-disclosure vulnerability in the Samsung ipcdump module, present before SMR Oct-2021 Release 1. The issue allows an attacker to detect device information by analyzing log-packet data. Documents describe vulnerable component (ipcdump) and impact as information...
CVE-2021-35198
NETSCOUT nGeniusONE 6.3.0 build 1004 and earlier allows Stored Cross-Site Scripting XSS in the Packet Analysis module...
CVE-2021-35198
NETSCOUT nGeniusONE 6.3.0 build 1004 and earlier allows Stored Cross-Site Scripting XSS in the Packet Analysis module...
Cross site scripting
NETSCOUT nGeniusONE 6.3.0 build 1004 and earlier allows Stored Cross-Site Scripting XSS in the Packet Analysis module...
CVE-2021-35198
NETSCOUT nGeniusONE 6.3.0 build 1004 and earlier allows Stored Cross-Site Scripting XSS in the Packet Analysis module...
CVE-2021-35198
NETSCOUT nGeniusONE 6.3.0 build 1004 and earlier is affected by a Stored Cross-Site Scripting (XSS) vulnerability in the Packet Analysis module. The root cause is improper input validation/filtering, enabling an attacker to inject JavaScript and perform stored XSS. Public references (NVD, CVE lis...
Netscout NgeniusOne 跨站脚本漏洞
Netscout NgeniusOne is a centralized application and network performance management solution from Netscout, Inc. A cross-site scripting vulnerability exists in Netscaut nGeniusONE in version 6.3.0 build 1196 and earlier, which stems from a lack of user input validation and filtering of input data...
Wireshark infinite loop vulnerability (CNVD-2022-11207)
Wireshark is a network packet analyzer. Wireshark is a network packet analyzer that captures network packets and displays the most detailed packet information possible.Wireshark uses WinPCAP as an interface to exchange data packets directly with the network card. An infinite loop vulnerability...
6 Unpatched Flaws Disclosed in Remote Mouse App for Android and iOS
As many as six zero-days have been uncovered in an application called Remote Mouse, allowing a remote attacker to achieve full code execution without any user interaction. The unpatched flaws, collectively named 'Mouse Trap,' were disclosed on Wednesday by security researcher Axel Persinger, who...
pcapplusplus:FuzzTarget: Use-of-uninitialized-value in pcpp::NullLoopbackLayer::parseNextLayer
Project: https://github.com/seladb/PcapPlusPlus.git Detailed Report: https://oss-fuzz.com/testcase?key=5696447256461312 Project: pcapplusplus Fuzzing Engine: libFuzzer Fuzz Target: FuzzTarget Job Type: libfuzzermsanpcapplusplus Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...
The vulnerability of Huawei USG6330’s network packet analysis tool allows a intruder to trigger a service failure.
The vulnerability of Huawei USG6330 network packet analysis tool is related to insufficient verification of input data during authentication. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using a specially crafted packet...
Wireshark injection vulnerability
Wireshark formerly known as Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. Wireshark suffers from an injection vulnerability. An attacker can exploit this...
tcpdump buffer overflow vulnerability (CNVD-2019-41908)
tcpdump is a set of sniffing tools from Tcpdump team running under command line. The tool is mainly used for packet analysis and network traffic capture etc. tcpdump suffers from a buffer overflow vulnerability. An attacker can exploit this vulnerability to cause a buffer overflow or heap overflo...
Wireshark Denial of Service Vulnerability (CNVD-2021-11324)
Wireshark formerly known as Ethereal is a suite of network packet analysis software from the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in Wireshark versions 3.0.0 through 3.0.2, 2.6.0 throug...
Termshark - A Terminal UI For Tshark, Inspired By Wireshark
A terminal user-interface for tshark, inspired by Wireshark. If you're debugging on a remote machine with a large pcap and no desire to scp it back to your desktop, termshark can help! Features Read pcap files or sniff live interfaces where tshark is permitted. Inspect each packet using familiar...