PT-2023-35607 · Git +1 · Wireshark

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash caused by a global buffer overflow read. The crash occurs in the dissect zcl read attr struct and dissect zbee zcl...

Design/Logic Flaw

In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error...

CVE-2018-19628

In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error...

wireshark-cli: denial of service

CVE-2015-8742 denial of service The dissectCPMSetBindings function in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.1 does not validate the column size, which allows remote attackers to cause a denial of service memory consumption or application crash via a...

Wireshark ZigBee解析器输入验证漏洞

Wireshark 1.12.7之前1.12.x版本的ZigBee解析器中的epan/dissectors/packet-zbee-security.c文件中的‘dissectzbeesecure’函数存在安全漏洞，该漏洞源于程序不正确地依赖数据包数据中包含的长度字段。远程攻击者可通过发送特制的数据包利用该漏洞造成拒绝服务（应用程序崩溃）。...