18 matches found
EUVD-2012-5930
Malware in sbrugna...
EUVD-2015-8599
Malware in sbrugna...
SUSE CVE-2008-1070
The SCTP dissector in Wireshark formerly Ethereal 0.99.5 through 0.99.7 allows remote attackers to cause a denial of service crash via a malformed packet...
SUSE CVE-2012-6056
Integer overflow in the dissectsackchunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Duplicate TSN count...
SUSE CVE-2015-8722
epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the frame pointer, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted packet...
FreeBSD : wireshark -- multiple vulnerabilities (42c2c422-df55-11e5-b2bd-002590263bf5)
Wireshark development team reports : The following vulnerabilities have been fixed : - wnpa-sec-2015-31 NBAP dissector crashes. Bug 11602, Bug 11835, Bug 11841 - wnpa-sec-2015-37 NLM dissector crash. - wnpa-sec-2015-39 BER dissector crash. - wnpa-sec-2015-40 Zlib decompression crash. Bug 11548 -...
Wireshark 1.12.x < 1.12.9 Multiple DoS
The version of Wireshark installed on the remote Windows host is 1.12.x prior to 1.12.9. It is, therefore, affected by multiple denial of service vulnerabilities in the following components : - 802.11 dissector - AllJoyn dissector - ANSI A dissector - Ascend file parser - BER dissector - DCOM...
DEBIAN-CVE-2015-8722
epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the frame pointer, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted packet...
wireshark: DoS (infinite loop) in the SCTP dissector (wnpa-sec-2012-33)
REJECTED CVE This CVE has been rejected. This candidate is a duplicate of CVE-2012-6056. Note: All CVE users should reference CVE-2012-6056 instead of this candidate...
SuSE 11.2 Security Update : wireshark (SAT Patch Number 7240)
This update to 1.8.4 fixes the following issues : - Wireshark could leak potentially sensitive host name resolution information when working with multiple pcap-ng files. wnpa-sec-2012-30, CVE-2012-5592 - The USB dissector could go into an infinite loop. wnpa-sec-2012-31, CVE-2012-5593 - The sFlow...
DEBIAN-CVE-2012-6056
Integer overflow in the dissectsackchunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Duplicate TSN count...
CVE-2012-6056
Integer overflow in the dissectsackchunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Duplicate TSN count...
CVE-2012-6056
Integer overflow in the dissectsackchunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Duplicate TSN count...
CVE-2012-6056
Integer overflow in the dissectsackchunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Duplicate TSN count...
CVE-2012-6056
Integer overflow in the dissectsackchunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service infinite loop via a crafted Duplicate TSN count...
wireshark: SCTP dissector crash
The SCTP dissector in Wireshark formerly Ethereal 0.99.5 through 0.99.7 allows remote attackers to cause a denial of service crash via a malformed packet...
SuSE 10 Security Update : ethereal (ZYPP Patch Number 5058)
This update fixes the following bugs : - the SCTP dissector could crash - the SNMP dissector could crash - the TFTP dissector could crash Wireshark maybe a bug in the Cairo library on specific platforms %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C...
CVE-2008-1070
CVE-2008-1070 affects the SCTP dissector in Wireshark (Ethereal) 0.99.5–0.99.7, allowing remote attackers to cause a crash (DoS) via a malformed packet. Connected advisories show MiracleLinux/Nessus entries confirming the issue and noting fixes in Wireshark builds (e.g., upgrade to 1.0.3) as part...