MidnightBSD

Advisories for wireshark

CVE-2006-3627 MEDIUM

Unspecified vulnerability in the GSM BSSMAP dissector in Wireshark (aka Ethereal) 0.10.11 to 0.99.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 0.10.11
wireshark wireshark 0.99
wireshark wireshark 0.10.12
wireshark wireshark 0.10.14
wireshark wireshark 0.10.13
wireshark wireshark 0.99.0
CVE-2006-3628 HIGH

Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-134,

Products Affected

Vendor Product Version
ethereal_group ethereal 0.10.5
ethereal_group ethereal 0.10.7
ethereal_group ethereal 0.10.2
wireshark wireshark 0.99
ethereal_group ethereal 0.10.14
ethereal_group ethereal 0.10.11
ethereal_group ethereal 0.10.4
ethereal_group ethereal 0.10.10
wireshark wireshark 0.10.13
ethereal_group ethereal 0.10.12
ethereal_group ethereal 0.10.8
ethereal_group ethereal 0.10.9
ethereal_group ethereal 0.10.0
ethereal_group ethereal 0.10
wireshark wireshark 0.99.1
ethereal_group ethereal 0.99.0
wireshark wireshark 0.10
ethereal_group ethereal 0.10.13
ethereal_group ethereal 0.10.1
ethereal_group ethereal 0.10.3
ethereal_group ethereal 0.10.6
wireshark wireshark 0.10.4
ethereal_group ethereal 0.10.0a
CVE-2006-3630 HIGH

Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via the (1) NCP NMAS and (2) NDPS dissectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 0.9.7
wireshark wireshark 0.9.8
wireshark wireshark 0.99.0
CVE-2006-3631 MEDIUM

Unspecified vulnerability in the SSH dissector in Wireshark (aka Ethereal) 0.9.10 to 0.99.0 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 0.9.15
wireshark wireshark 0.9.7
wireshark wireshark 0.99
wireshark wireshark 0.9.6
wireshark wireshark 0.9.5
wireshark wireshark 0.9.14
wireshark wireshark 0.9.10
wireshark wireshark 0.9.8
wireshark wireshark 0.99.0
wireshark wireshark 0.9.2
CVE-2006-4574 MEDIUM

Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length values.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-193,CWE-617,CWE-193,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2007-6438 MEDIUM

Unspecified vulnerability in the SMB dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service via unknown vectors. NOTE: this identifier originally included MP3 and NCP, but those issues are already covered by CVE-2007-6111.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.6
CVE-2007-6439 MEDIUM

Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite or large loop) via the (1) IPv6 or (2) USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Firebird/Interbase, but it is already covered by CVE-2007-6116. The DCP ETSI issue is already covered by CVE-2007-6119.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.6
CVE-2008-3932 MEDIUM

Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a denial of service (hang) via a crafted NCP packet that triggers an infinite loop.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 0.10.1
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 0.10.7
wireshark wireshark 0.10.6
wireshark wireshark 0.10.9
wireshark wireshark 0.99.6a
wireshark wireshark 0.9.7
wireshark wireshark 0.10.11
wireshark wireshark 0.99.1
wireshark wireshark 0.99.3
wireshark wireshark 0.99.6
wireshark wireshark 0.10.10
wireshark wireshark 0.10.8
wireshark wireshark 0.99.7
wireshark wireshark 0.10.2
wireshark wireshark 0.9.8
wireshark wireshark 0.99.0
wireshark wireshark 0.10.12
wireshark wireshark 1.0.0
wireshark wireshark 0.10.3
wireshark wireshark 0.10.13
wireshark wireshark 0.99.4
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 0.10.14
wireshark wireshark 0.10.5
wireshark wireshark 0.99.5
wireshark wireshark 0.10.4
CVE-2009-0601 LOW

Format string vulnerability in Wireshark 0.99.8 through 1.0.5 on non-Windows platforms allows local users to cause a denial of service (application crash) via format string specifiers in the HOME environment variable.

CVSS 2.0

Severity: LOW

Problem Type: CWE-134,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.2
wireshark wireshark 1.0.0
wireshark wireshark 1.0.5
wireshark wireshark 1.0.3
wireshark wireshark 1.0.4
CVE-2009-3550 MEDIUM

The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 0.10.7
wireshark wireshark 1.0.7
wireshark wireshark 0.10.6
wireshark wireshark 0.10.9
wireshark wireshark 0.10.11
wireshark wireshark 1.0.6
wireshark wireshark 1.2.1
wireshark wireshark 0.10.10
wireshark wireshark 0.10.8
wireshark wireshark 0.10.2
wireshark wireshark 1.2.2
wireshark wireshark 0.10.12
wireshark wireshark 1.0.0
wireshark wireshark 0.10.3
wireshark wireshark 1.0.3
wireshark wireshark 0.10.13
wireshark wireshark 1.0
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 0.10.14
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.10.5
wireshark wireshark 1.0.4
wireshark wireshark 1.2
wireshark wireshark 0.10.4
CVE-2009-3551 MEDIUM

Off-by-one error in the dissect_negprot_response function in packet-smb.c in the SMB dissector in Wireshark 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.0
wireshark wireshark 1.2.1
wireshark wireshark 1.2
CVE-2010-0304 HIGH

Multiple buffer overflows in the LWRES dissector in Wireshark 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allow remote attackers to cause a denial of service (crash) via a malformed packet, as demonstrated using a stack-based buffer overflow to the dissect_getaddrsbyname_request function.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.0.1
wireshark wireshark 1.2.2
wireshark wireshark 0.9.15
wireshark wireshark 1.0.8
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 1.0
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.0.6
wireshark wireshark 1.2.4
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 1.2.1
wireshark wireshark 1.0.4
wireshark wireshark 1.2
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-1455 MEDIUM

The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0 through 1.2.7 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed packet trace file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 0.9.6
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 0.99.1
wireshark wireshark 0.99.3
ethereal_group ethereal 0.99.0
wireshark wireshark 1.2.1
wireshark wireshark 0.99.6
wireshark wireshark 0.99.7
wireshark wireshark 1.0.12
wireshark wireshark 0.99.0
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
ethereal_group ethereal 0.9.6
wireshark wireshark 1.0.0
ethereal_group ethereal 0.9.8
wireshark wireshark 1.0.3
ethereal_group ethereal 0.9.7
wireshark wireshark 0.99.4
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.99.5
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-2283 LOW

The SMB dissector in Wireshark 0.99.6 through 1.0.13, and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 1.2.1
wireshark wireshark 0.99.6
wireshark wireshark 1.0.13
wireshark wireshark 0.99.7
wireshark wireshark 1.0.12
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.2.8
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-2284 HIGH

Buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 0.99.1
wireshark wireshark 0.99.3
wireshark wireshark 1.2.1
wireshark wireshark 0.99.6
wireshark wireshark 1.0.13
wireshark wireshark 0.99.7
wireshark wireshark 1.0.12
wireshark wireshark 0.99.0
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.2.8
wireshark wireshark 0.10.13
wireshark wireshark 0.99.4
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 0.10.14
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.99.5
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-2285 LOW

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 0.99.1
wireshark wireshark 0.99.3
wireshark wireshark 1.2.1
wireshark wireshark 0.99.6
wireshark wireshark 1.0.13
wireshark wireshark 0.99.7
wireshark wireshark 1.0.12
wireshark wireshark 0.99.0
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.2.8
wireshark wireshark 0.10.13
wireshark wireshark 0.99.4
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 0.8.20
wireshark wireshark 0.10.14
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.99.5
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-2286 LOW

The SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.7 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 0.10.7
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 0.10.9
wireshark wireshark 1.2.6
wireshark wireshark 0.10.11
wireshark wireshark 1.0.6
wireshark wireshark 0.99.1
wireshark wireshark 0.99.3
wireshark wireshark 1.2.1
wireshark wireshark 0.99.6
wireshark wireshark 1.0.13
wireshark wireshark 0.10.10
wireshark wireshark 0.10.8
wireshark wireshark 0.99.7
wireshark wireshark 1.0.12
wireshark wireshark 0.99.0
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 0.10.12
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.2.8
wireshark wireshark 0.10.13
wireshark wireshark 0.99.4
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 0.8.20
wireshark wireshark 0.10.14
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.99.5
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-2287 HIGH

Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 0.10.9
wireshark wireshark 1.2.6
wireshark wireshark 0.10.11
wireshark wireshark 1.0.6
wireshark wireshark 0.99.1
wireshark wireshark 0.99.3
wireshark wireshark 1.2.1
wireshark wireshark 0.99.6
wireshark wireshark 1.0.13
wireshark wireshark 0.10.10
wireshark wireshark 0.10.8
wireshark wireshark 0.99.7
wireshark wireshark 1.0.12
wireshark wireshark 0.99.0
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 0.10.12
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.2.8
wireshark wireshark 0.10.13
wireshark wireshark 0.99.4
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 0.10.14
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.99.5
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-2992 MEDIUM

packet-gsm_a_rr.c in the GSM A RR dissector in Wireshark 1.2.2 through 1.2.9 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger a NULL pointer dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.6
wireshark wireshark 1.2.4
wireshark wireshark 1.2.7
wireshark wireshark 1.2.8
wireshark wireshark 1.2.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.9
CVE-2010-2993 MEDIUM

The IPMI dissector in Wireshark 1.2.0 through 1.2.9 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.7
wireshark wireshark 1.2.1
wireshark wireshark 1.2
wireshark wireshark 1.2.8
wireshark wireshark 1.2.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.9
CVE-2010-2994 HIGH

Stack-based buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.14 and 1.2.0 through 1.2.9 has unknown impact and remote attack vectors. NOTE: this issue exists because of a CVE-2010-2284 regression.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 1.2.1
wireshark wireshark 1.0.13
wireshark wireshark 1.2.9
wireshark wireshark 1.0.12
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.2.8
wireshark wireshark 0.10.13
wireshark wireshark 1.0
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 0.10.14
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 1.0.4
wireshark wireshark 1.2
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-2995 HIGH

The SigComp Universal Decompressor Virtual Machine (UDVM) in Wireshark 0.10.8 through 1.0.14 and 1.2.0 through 1.2.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to sigcomp-udvm.c and an off-by-one error, which triggers a buffer overflow, different vulnerabilities than CVE-2010-2287.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.14
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 0.10.9
wireshark wireshark 1.2.6
wireshark wireshark 0.10.11
wireshark wireshark 1.0.6
wireshark wireshark 1.2.1
wireshark wireshark 1.0.13
wireshark wireshark 0.10.10
wireshark wireshark 0.10.8
wireshark wireshark 1.2.9
wireshark wireshark 1.0.12
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 0.10.12
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.2.8
wireshark wireshark 0.10.13
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 0.10.14
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 1.0.4
wireshark wireshark 1.2
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-3133 HIGH

Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 0.99.3
wireshark wireshark 1.2.1
wireshark wireshark 0.99.6
wireshark wireshark 0.99.7
wireshark wireshark 1.2.9
wireshark wireshark 1.0.12
wireshark wireshark *
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.2.8
wireshark wireshark 0.99.4
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.99.5
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2010-3445 MEDIUM

Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a long string in an unknown ASN.1/BER encoded packet, as demonstrated using SNMP.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.2.8
wireshark wireshark 1.2.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.1
wireshark wireshark 1.2.3
wireshark wireshark 1.2.9
CVE-2010-4300 HIGH

Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an LDSS packet with a long digest line that triggers memory corruption.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.2.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.1
wireshark wireshark 1.2.3
wireshark wireshark 1.2.9
CVE-2010-4301 MEDIUM

epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted ZCL packet, related to Discover Attributes.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.1
wireshark wireshark 1.4.0
CVE-2010-4538 HIGH

Buffer overflow in the sect_enttec_dmx_da function in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ENTTEC DMX packet with Run Length Encoding (RLE) compression.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.2
CVE-2011-0024 HIGH

Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted capture file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.14
wireshark wireshark 1.0.7
wireshark wireshark 1.0.6
wireshark wireshark 0.99.3
wireshark wireshark 0.99.6
wireshark wireshark 1.0.13
wireshark wireshark 0.99.7
wireshark wireshark 1.0.12
wireshark wireshark *
wireshark wireshark 1.0.11
wireshark wireshark 1.0.0
wireshark wireshark 1.0.3
wireshark wireshark 1.0.15
wireshark wireshark 0.99.4
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.99.5
wireshark wireshark 1.0.4
wireshark wireshark 1.0.10
CVE-2011-0444 HIGH

Buffer overflow in the MAC-LTE dissector (epan/dissectors/packet-mac-lte.c) in Wireshark 1.2.0 through 1.2.13 and 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of RARs.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.2.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2.1
wireshark wireshark 1.2
wireshark wireshark 1.4.2
wireshark wireshark 1.2.3
wireshark wireshark 1.2.9
CVE-2011-0445 MEDIUM

The ASN.1 BER dissector in Wireshark 1.4.0 through 1.4.2 allows remote attackers to cause a denial of service (assertion failure) via crafted packets, as demonstrated by fuzz-2010-12-30-28473.pcap.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.1
wireshark wireshark 1.4.2
wireshark wireshark 1.4.0
CVE-2011-0538 MEDIUM

Wireshark 1.2.0 through 1.2.14, 1.4.0 through 1.4.3, and 1.5.0 frees an uninitialized pointer during processing of a .pcap file in the pcap-ng format, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a malformed file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.5.0
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.2
wireshark wireshark 1.2.3
wireshark wireshark 1.2.9
CVE-2011-0713 MEDIUM

Heap-based buffer overflow in wiretap/dct3trace.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long record in a Nokia DCT3 trace file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.2
wireshark wireshark 1.2.3
wireshark wireshark 1.2.9
CVE-2011-1138 MEDIUM

Off-by-one error in the dissect_6lowpan_iphc function in packet-6lowpan.c in Wireshark 1.4.0 through 1.4.3 on 32-bit platforms allows remote attackers to cause a denial of service (application crash) via a malformed 6LoWPAN IPv6 packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.1
wireshark wireshark 1.4.2
wireshark wireshark 1.4.3
wireshark wireshark 1.4.0
CVE-2011-1139 MEDIUM

wiretap/pcapng.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (application crash) via a pcap-ng file that contains a large packet-length field.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.2
wireshark wireshark 1.2.3
wireshark wireshark 1.2.9
CVE-2011-1140 MEDIUM

Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.14
wireshark wireshark 1.2.10
wireshark wireshark 1.0.7
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 1.0.16
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.0.13
wireshark wireshark 1.4.2
wireshark wireshark 1.2.9
wireshark wireshark 1.0.12
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.0.0
wireshark wireshark 1.4.1
wireshark wireshark 1.0.3
wireshark wireshark 1.0.15
wireshark wireshark 1.2.8
wireshark wireshark 1.0
wireshark wireshark 1.4.0
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2011-1141 MEDIUM

epan/dissectors/packet-ldap.c in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allows remote attackers to cause a denial of service (memory consumption) via (1) a long LDAP filter string or (2) an LDAP filter string containing many elements.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.14
wireshark wireshark 1.2.10
wireshark wireshark 1.0.7
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 1.0.16
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.0.13
wireshark wireshark 1.4.2
wireshark wireshark 1.2.9
wireshark wireshark 1.0.12
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.0.0
wireshark wireshark 1.4.1
wireshark wireshark 1.0.3
wireshark wireshark 1.0.15
wireshark wireshark 1.2.8
wireshark wireshark 1.0
wireshark wireshark 1.4.0
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 1.0.4
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2011-1142 MEDIUM

Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in Wireshark 1.2.x through 1.2.15 and 1.4.x through 1.4.4 might allow remote attackers to cause a denial of service (infinite loop) via vectors involving self-referential ASN.1 CHOICE values.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.4.0
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.4
wireshark wireshark 1.4.2
wireshark wireshark 1.2.3
wireshark wireshark 1.2.9
CVE-2011-1143 MEDIUM

epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark before 1.4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted .pcap file.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 0.99.8
wireshark wireshark 1.0.1
wireshark wireshark 1.0.8
wireshark wireshark 1.0.14
wireshark wireshark 1.2.10
wireshark wireshark 1.0.7
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.2.6
wireshark wireshark 1.0.6
wireshark wireshark 0.99.3
wireshark wireshark 1.0.16
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 0.99.6
wireshark wireshark 1.0.13
wireshark wireshark 1.4.2
wireshark wireshark 0.99.7
wireshark wireshark 1.2.9
wireshark wireshark 1.0.12
wireshark wireshark *
wireshark wireshark 1.0.11
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.0.0
wireshark wireshark 1.4.1
wireshark wireshark 1.0.3
wireshark wireshark 1.0.15
wireshark wireshark 1.2.8
wireshark wireshark 0.99.4
wireshark wireshark 1.4.0
wireshark wireshark 0.99.2
wireshark wireshark 1.0.2
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.0.5
wireshark wireshark 1.0.9
wireshark wireshark 0.99.5
wireshark wireshark 1.0.4
wireshark wireshark 1.2
wireshark wireshark 1.2.3
wireshark wireshark 1.0.10
CVE-2011-1590 MEDIUM

The X.509if dissector in Wireshark 1.2.x before 1.2.16 and 1.4.x before 1.4.5 does not properly initialize certain global variables, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.2
wireshark wireshark 1.2.7
wireshark wireshark 1.2.10
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.4.0
wireshark wireshark 1.2.6
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.4
wireshark wireshark 1.4.2
wireshark wireshark 1.2.3
wireshark wireshark 1.2.9
CVE-2011-1591 HIGH

Stack-based buffer overflow in the DECT dissector in epan/dissectors/packet-dect.c in Wireshark 1.4.x before 1.4.5 allows remote attackers to execute arbitrary code via a crafted .pcap file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.1
wireshark wireshark 1.4.4
wireshark wireshark 1.4.2
wireshark wireshark 1.4.3
wireshark wireshark 1.4.0
CVE-2011-1592 MEDIUM

The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.1
wireshark wireshark 1.4.4
wireshark wireshark 1.4.2
wireshark wireshark 1.4.3
wireshark wireshark 1.4.0
CVE-2011-1956 MEDIUM

The bytes_repr_len function in Wireshark 1.4.5 uses an incorrect pointer argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via arbitrary TCP traffic.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.5
CVE-2011-1957 MEDIUM

The dissect_dcm_main function in epan/dissectors/packet-dcm.c in the DICOM dissector in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (infinite loop) via an invalid PDU length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.10
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.2.6
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.4
wireshark wireshark 1.2.16
wireshark wireshark 1.4.2
wireshark wireshark 1.2.9
wireshark wireshark 1.2.2
wireshark wireshark 1.4.6
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2
wireshark wireshark 1.2.3
CVE-2011-1958 MEDIUM

Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Diameter dictionary file.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.10
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.2.6
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.4
wireshark wireshark 1.2.16
wireshark wireshark 1.4.2
wireshark wireshark 1.2.9
wireshark wireshark 1.2.2
wireshark wireshark 1.4.6
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2
wireshark wireshark 1.2.3
CVE-2011-1959 MEDIUM

The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (application crash) via a large length value in a snoop file that triggers a stack-based buffer over-read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.10
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.2.6
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.4
wireshark wireshark 1.2.16
wireshark wireshark 1.4.2
wireshark wireshark 1.2.9
wireshark wireshark 1.2.2
wireshark wireshark 1.4.6
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2
wireshark wireshark 1.2.3
CVE-2011-2174 MEDIUM

Double free vulnerability in the tvb_uncompress function in epan/tvbuff.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a packet with malformed data that uses zlib compression.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.10
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.2.6
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.4
wireshark wireshark 1.2.16
wireshark wireshark 1.4.2
wireshark wireshark 1.2.9
wireshark wireshark 1.2.2
wireshark wireshark 1.4.6
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2
wireshark wireshark 1.2.3
CVE-2011-2175 MEDIUM

Integer underflow in the visual_read function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a malformed Visual Networks file that triggers a heap-based buffer over-read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.10
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.2.6
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.4
wireshark wireshark 1.2.16
wireshark wireshark 1.4.2
wireshark wireshark 1.2.9
wireshark wireshark 1.2.2
wireshark wireshark 1.4.6
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.2
wireshark wireshark 1.2.3
CVE-2011-2597 MEDIUM

The Lucent/Ascend file parser in Wireshark 1.2.x before 1.2.18, 1.4.x through 1.4.7, and 1.6.0 allows remote attackers to cause a denial of service (infinite loop) via malformed packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.2.10
wireshark wireshark 1.4.7
wireshark wireshark 1.2.17
wireshark wireshark 1.4.3
wireshark wireshark 1.2.5
wireshark wireshark 1.2.15
wireshark wireshark 1.2.6
wireshark wireshark 1.2.1
wireshark wireshark 1.2.14
wireshark wireshark 1.4.4
wireshark wireshark 1.2.16
wireshark wireshark 1.4.2
wireshark wireshark 1.2.9
wireshark wireshark 1.2.2
wireshark wireshark 1.4.6
wireshark wireshark 1.2.7
wireshark wireshark 1.2.11
wireshark wireshark 1.4.1
wireshark wireshark 1.2.8
wireshark wireshark 1.4.5
wireshark wireshark 1.4.0
wireshark wireshark 1.2.0
wireshark wireshark 1.2.4
wireshark wireshark 1.2.12
wireshark wireshark 1.2.13
wireshark wireshark 1.6.0
wireshark wireshark 1.2
wireshark wireshark 1.2.3
CVE-2011-2698 MEDIUM

Off-by-one error in the elem_cell_id_aux function in epan/dissectors/packet-ansi_a.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service (infinite loop) via an invalid packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.4
wireshark wireshark 1.6.0
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.2
wireshark wireshark 1.4.3
wireshark wireshark 1.4.0
CVE-2011-3266 LOW

The proto_tree_add_item function in Wireshark 1.6.0 through 1.6.1 and 1.4.0 through 1.4.8, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of service (infinite loop) via vectors involving a malformed IKE packet and many items in a tree.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.2
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
CVE-2011-3360 HIGH

Untrusted search path vulnerability in Wireshark 1.4.x before 1.4.9 and 1.6.x before 1.6.2 allows local users to gain privileges via a Trojan horse Lua script in an unspecified directory.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.2
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
CVE-2011-3482 MEDIUM

The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.2 does not initialize a certain structure member, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.0
wireshark wireshark 1.6.1
CVE-2011-3483 MEDIUM

Wireshark 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (application crash) via a malformed capture file that leads to an invalid root tvbuff, related to a "buffer exception handling vulnerability."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.0
wireshark wireshark 1.6.1
CVE-2011-3484 MEDIUM

The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial of service (loop and application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.0
wireshark wireshark 1.6.1
CVE-2011-4100 MEDIUM

The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.3 does not initialize a certain variable, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.1
CVE-2011-4101 MEDIUM

The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.9
CVE-2011-4102 MEDIUM

Heap-based buffer overflow in the erf_read_header function in wiretap/erf.c in the ERF file parser in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (application crash) via a malformed file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.9
CVE-2012-0041 MEDIUM

The dissect_packet function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a capture file, as demonstrated by an airopeek file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
redhat enterprise_linux 5
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-0042 LOW

Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet, related to epan/to_str.c.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
redhat enterprise_linux 5
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-0043 MEDIUM

Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a series of fragmented RLC packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-0066 MEDIUM

Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a (1) Accellent 5Views (aka .5vw) file, (2) I4B trace file, or (3) NETMON 2 capture file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
redhat enterprise_linux 5
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-0067 MEDIUM

wiretap/iptrace.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in an AIX iptrace file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
redhat enterprise_linux 5
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-0068 MEDIUM

The lanalyzer_read function in wiretap/lanalyzer.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a Novell capture file containing a record that is too small.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-1593 LOW

epan/dissectors/packet-ansi_a.c in the ANSI A dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.4.0
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-1594 LOW

epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in Wireshark 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-94,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
CVE-2012-1595 MEDIUM

The pcap_process_pseudo_header function in wiretap/pcap-common.c in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (application crash) via a WTAP_ENCAP_ERF file containing an Extension or Multi-Channel header with an invalid pseudoheader size, related to the pcap and pcap-ng file parsers.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-1596 MEDIUM

The mp2t_process_fragmented_payload function in epan/dissectors/packet-mp2t.c in the MP2T dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (application crash) via a packet containing an invalid pointer value that triggers an incorrect memory-allocation attempt.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.6.1
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-2392 LOW

Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allows remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) ANSI MAP, (2) ASF, (3) IEEE 802.11, (4) IEEE 802.3, and (5) LTP dissectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.6.6
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.4.12
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.4.13
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-2393 LOW

epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 does not properly construct certain array data structures, which allows remote attackers to cause a denial of service (application crash) via a crafted packet that triggers incorrect memory allocation.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.6.6
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.4.12
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.4.13
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-2394 LOW

Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 on the SPARC and Itanium platforms does not properly perform data alignment for a certain structure member, which allows remote attackers to cause a denial of service (application crash) via a (1) ICMP or (2) ICMPv6 Echo Request packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.6.6
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.4.12
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.4.13
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-3825 LOW

Multiple integer overflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) BACapp and (2) Bluetooth HCI dissectors, a different vulnerability than CVE-2012-2392.

CVSS 2.0

Severity: LOW

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.6.6
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.4.12
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.4.13
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-3826 LOW

Multiple integer underflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (loop) via vectors related to the R3 dissector, a different vulnerability than CVE-2012-2392.

CVSS 2.0

Severity: LOW

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.4.6
wireshark wireshark 1.4.1
wireshark wireshark 1.4.7
wireshark wireshark 1.4.5
wireshark wireshark 1.6.6
wireshark wireshark 1.4.3
wireshark wireshark 1.4.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.4.12
wireshark wireshark 1.4.0
wireshark wireshark 1.6.4
wireshark wireshark 1.4.13
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.4.4
wireshark wireshark 1.4.8
wireshark wireshark 1.6.0
wireshark wireshark 1.4.2
wireshark wireshark 1.4.10
wireshark wireshark 1.4.9
CVE-2012-6052 MEDIUM

Wireshark 1.8.x before 1.8.4 allows remote attackers to obtain sensitive hostname information by reading pcap-ng files.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.8.2
CVE-2012-6053 MEDIUM

epan/dissectors/packet-usb.c in the USB dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 relies on a length field to calculate an offset value, which allows remote attackers to cause a denial of service (infinite loop) via a zero value for this field.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2012-6054 MEDIUM

The dissect_sflow_245_address_type function in epan/dissectors/packet-sflow.c in the sFlow dissector in Wireshark 1.8.x before 1.8.4 does not properly handle length calculations for an invalid IP address type, which allows remote attackers to cause a denial of service (infinite loop) via a packet that is neither IPv4 nor IPv6.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.8.2
CVE-2012-6055 MEDIUM

epan/dissectors/packet-3g-a11.c in the 3GPP2 A11 dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a zero value in a sub-type length field.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.8.2
CVE-2012-6056 MEDIUM

Integer overflow in the dissect_sack_chunk function in epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted Duplicate TSN count.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.8.2
CVE-2012-6057 MEDIUM

The dissect_eigrp_metric_comm function in epan/dissectors/packet-eigrp.c in the EIGRP dissector in Wireshark 1.8.x before 1.8.4 uses the wrong data type for a certain offset value, which allows remote attackers to cause a denial of service (integer overflow and infinite loop) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.8.2
CVE-2012-6058 MEDIUM

Integer overflow in the dissect_icmpv6 function in epan/dissectors/packet-icmpv6.c in the ICMPv6 dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted Number of Sources value.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2012-6059 MEDIUM

The dissect_isakmp function in epan/dissectors/packet-isakmp.c in the ISAKMP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 uses an incorrect data structure to determine IKEv2 decryption parameters, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2012-6060 MEDIUM

Integer overflow in the dissect_iscsi_pdu function in epan/dissectors/packet-iscsi.c in the iSCSI dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2012-6061 MEDIUM

The dissect_wtp_common function in epan/dissectors/packet-wtp.c in the WTP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 uses an incorrect data type for a certain length field, which allows remote attackers to cause a denial of service (integer overflow and infinite loop) via a crafted value in a packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2012-6062 MEDIUM

The dissect_rtcp_app function in epan/dissectors/packet-rtcp.c in the RTCP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1572 LOW

The dissect_oampdu_event_notification function in epan/dissectors/packet-slowprotocols.c in the IEEE 802.3 Slow Protocols dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle certain short lengths, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1573 LOW

The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a large number of padding bits, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1574 LOW

The dissect_bthci_eir_ad_data function in epan/dissectors/packet-bthci_cmd.c in the Bluetooth HCI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a counter variable, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1575 LOW

The dissect_r3_cmd_alarmconfigure function in epan/dissectors/packet-assa_r3.c in the R3 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a certain alarm length, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1576 LOW

The dissect_sdp_media_attribute function in epan/dissectors/packet-sdp.c in the SDP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly process crypto-suite parameters, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-310,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1577 LOW

The dissect_sip_p_charging_func_addresses function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle offset data associated with a quoted string, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1578 LOW

The dissect_pw_eth_heuristic function in epan/dissectors/packet-pw-eth.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle apparent Ethernet address values at the beginning of MPLS data, which allows remote attackers to cause a denial of service (loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1579 LOW

The rtps_util_add_bitmap function in epan/dissectors/packet-rtps.c in the RTPS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly implement certain nested loops for processing bitmap data, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1580 LOW

The dissect_cmstatus_tlv function in plugins/docsis/packet-cmstatus.c in the DOCSIS CM-STATUS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a position variable, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1581 LOW

The dissect_pft_fec_detailed function in epan/dissectors/packet-dcp-etsi.c in the DCP-ETSI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle fragment gaps, which allows remote attackers to cause a denial of service (loop) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1582 LOW

The dissect_clnp function in epan/dissectors/packet-clnp.c in the CLNP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly manage an offset variable, which allows remote attackers to cause a denial of service (infinite loop or application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1583 LOW

The dissect_version_4_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1584 LOW

The dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1585 LOW

epan/tvbuff.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly validate certain length values for the MS-MMC dissector, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1586 LOW

The fragment_set_tot_len function in epan/reassemble.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly determine the length of a reassembled packet for the DTLS dissector, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1587 LOW

The dissect_rohc_ir_packet function in epan/dissectors/packet-rohc.c in the ROHC dissector in Wireshark 1.8.x before 1.8.5 does not properly handle unknown profiles, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1588 LOW

Multiple buffer overflows in the dissect_pft_fec_detailed function in the DCP-ETSI dissector in epan/dissectors/packet-dcp-etsi.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allow remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1589 LOW

Double free vulnerability in epan/proto.c in the dissection engine in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-1590 LOW

Buffer overflow in the NTLMSSP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.8.1
wireshark wireshark 1.8.0
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.4
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.6.4
wireshark wireshark 1.8.3
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.8.2
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-2475 LOW

The TCP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
opensuse opensuse 12.1
CVE-2013-2476 MEDIUM

The dissect_hartip function in epan/dissectors/packet-hartip.c in the HART/IP dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a packet with a header that is too short.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
opensuse opensuse 12.1
CVE-2013-2477 LOW

The CSN.1 dissector in Wireshark 1.8.x before 1.8.6 does not properly manage function pointers, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
CVE-2013-2478 LOW

The dissect_server_info function in epan/dissectors/packet-ms-mms.c in the MS-MMS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not properly manage string lengths, which allows remote attackers to cause a denial of service (application crash) via a malformed packet that (1) triggers an integer overflow or (2) has embedded '\0' characters in a string.

CVSS 2.0

Severity: LOW

Problem Type: CWE-189,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
opensuse opensuse 12.1
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.8.1
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-2479 LOW

The dissect_mpls_echo_tlv_dd_map function in epan/dissectors/packet-mpls-echo.c in the MPLS Echo dissector in Wireshark 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via invalid Sub-tlv data.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
opensuse opensuse 12.1
CVE-2013-2480 LOW

The RTPS and RTPS2 dissectors in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allow remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
debian debian_linux 6.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
opensuse opensuse 12.1
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.8.1
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-2481 LOW

Integer signedness error in the dissect_mount_dirpath_call function in epan/dissectors/packet-mount.c in the Mount dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6, when nfs_file_name_snooping is enabled, allows remote attackers to cause a denial of service (application crash) via a negative length value.

CVSS 2.0

Severity: LOW

Problem Type: CWE-189,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
debian debian_linux 6.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
opensuse opensuse 12.1
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.8.1
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-2482 MEDIUM

The AMPQ dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
opensuse opensuse 12.1
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.8.1
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-2483 LOW

The acn_add_dmp_data function in epan/dissectors/packet-acn.c in the ACN dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via an invalid count value in ACN_DMP_ADT_D_RE DMP data.

CVSS 2.0

Severity: LOW

Problem Type: CWE-189,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
opensuse opensuse 12.1
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.8.1
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-2484 LOW

The CIMD dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
opensuse opensuse 12.1
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.8.1
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-2485 MEDIUM

The FCSP dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
opensuse opensuse 12.1
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.8.1
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-2486 MEDIUM

The dissect_diagnosticrequest function in epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (infinite loop) via crafted integer values in a packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
debian debian_linux 7.0
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
opensuse opensuse 12.1
CVE-2013-2487 HIGH

epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer data types, which allows remote attackers to cause a denial of service (infinite loop) via crafted integer values in a packet, related to the (1) dissect_icecandidates, (2) dissect_kinddata, (3) dissect_nodeid_list, (4) dissect_storeans, (5) dissect_storereq, (6) dissect_storeddataspecifier, (7) dissect_fetchreq, (8) dissect_findans, (9) dissect_diagnosticinfo, (10) dissect_diagnosticresponse, (11) dissect_reload_messagecontents, and (12) dissect_reload_message functions, a different vulnerability than CVE-2013-2486.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
debian debian_linux 7.0
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
opensuse opensuse 12.1
CVE-2013-2488 MEDIUM

The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service (application crash) via a large offset value that triggers write access to an invalid memory location.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
opensuse opensuse 12.1
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.8.1
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-3555 MEDIUM

epan/dissectors/packet-gtpv2.c in the GTPv2 dissector in Wireshark 1.8.x before 1.8.7 calls incorrect functions in certain contexts related to ciphers, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
debian debian_linux 7.0
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
CVE-2013-3556 MEDIUM

The fragment_add_seq_common function in epan/reassemble.c in the ASN.1 BER dissector in Wireshark before r48943 has an incorrect pointer dereference during a comparison, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.6.14
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-3557 MEDIUM

The dissect_ber_choice function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.6.x before 1.6.15 and 1.8.x before 1.8.7 does not properly initialize a certain variable, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.6.14
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-3558 MEDIUM

The dissect_ccp_bsdcomp_opt function in epan/dissectors/packet-ppp.c in the PPP CCP dissector in Wireshark 1.8.x before 1.8.7 does not terminate a bit-field list, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
debian debian_linux 7.0
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
CVE-2013-3559 MEDIUM

epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.8.x before 1.8.7 uses incorrect integer data types, which allows remote attackers to cause a denial of service (integer overflow, and heap memory corruption or NULL pointer dereference, and application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
debian debian_linux 8.0
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
CVE-2013-3560 MEDIUM

The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC dissector in Wireshark 1.8.x before 1.8.7 uses an incorrect format string, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-134,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
debian debian_linux 7.0
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
CVE-2013-3561 HIGH

Multiple integer overflows in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (loop or application crash) via a malformed packet, related to a crash of the Websocket dissector, an infinite loop in the MySQL dissector, and a large loop in the ETCH dissector.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
debian debian_linux 7.0
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
CVE-2013-3562 MEDIUM

Multiple integer signedness errors in the tvb_unmasked function in epan/dissectors/packet-websocket.c in the Websocket dissector in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (application crash) via a malformed packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
debian debian_linux 7.0
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
CVE-2013-4074 MEDIUM

The dissect_capwap_data function in epan/dissectors/packet-capwap.c in the CAPWAP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 incorrectly uses a -1 data value to represent an error condition, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.6.15
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.6.14
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-4075 MEDIUM

epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
opensuse opensuse 12.3
debian debian_linux 7.0
wireshark wireshark 1.8.2
CVE-2013-4076 MEDIUM

Buffer overflow in the dissect_iphc_crtp_fh function in epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
opensuse opensuse 12.3
debian debian_linux 7.0
wireshark wireshark 1.8.2
CVE-2013-4077 MEDIUM

Array index error in the NBAP dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to nbap.cnf and packet-nbap.c.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
opensuse opensuse 12.3
debian debian_linux 7.0
wireshark wireshark 1.8.2
CVE-2013-4078 MEDIUM

epan/dissectors/packet-rdp.c in the RDP dissector in Wireshark 1.8.x before 1.8.8 does not validate return values during checks for data availability, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
opensuse opensuse 12.3
debian debian_linux 7.0
wireshark wireshark 1.8.2
CVE-2013-4079 MEDIUM

The dissect_schedule_message function in epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.8.x before 1.8.8 allows remote attackers to cause a denial of service (infinite loop and application hang) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
opensuse opensuse 12.3
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4080 MEDIUM

The dissect_r3_upstreamcommand_queryconfig function in epan/dissectors/packet-assa_r3.c in the Assa Abloy R3 dissector in Wireshark 1.8.x before 1.8.8 does not properly handle a zero-length item, which allows remote attackers to cause a denial of service (infinite loop, and CPU and memory consumption) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4081 MEDIUM

The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 does not properly determine when to use a recursive approach, which allows remote attackers to cause a denial of service (stack consumption) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
opensuse opensuse 11.4
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
opensuse opensuse 12.3
wireshark wireshark 1.6.15
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
opensuse opensuse 12.2
wireshark wireshark 1.6.14
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
debian debian_linux 7.0
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-4082 MEDIUM

The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.8 does not validate the relationship between a record length and a trailer length, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
opensuse opensuse 12.2
opensuse opensuse 11.4
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
opensuse opensuse 12.3
debian debian_linux 7.0
wireshark wireshark 1.8.2
CVE-2013-4083 MEDIUM

The dissect_pft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.6.x before 1.6.16, 1.8.x before 1.8.8, and 1.10.0 does not validate a certain fragment length value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.0
wireshark wireshark 1.6.7
wireshark wireshark 1.6.1
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.6.15
wireshark wireshark 1.8.2
wireshark wireshark 1.6.13
wireshark wireshark 1.6.5
wireshark wireshark 1.6.12
wireshark wireshark 1.6.14
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.6.6
wireshark wireshark 1.6.11
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.6.4
wireshark wireshark 1.6.3
wireshark wireshark 1.6.2
wireshark wireshark 1.6.0
wireshark wireshark 1.6.8
wireshark wireshark 1.6.10
wireshark wireshark 1.6.9
CVE-2013-4920 MEDIUM

The P1 dissector in Wireshark 1.10.x before 1.10.1 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-4921 MEDIUM

Off-by-one error in the dissect_radiotap function in epan/dissectors/packet-ieee80211-radiotap.c in the Radiotap dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-4922 MEDIUM

Double free vulnerability in the dissect_dcom_ActivationProperties function in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-4923 MEDIUM

Memory leak in the dissect_dcom_ActivationProperties function in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (memory consumption) via crafted packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-4924 MEDIUM

epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 does not properly validate certain index values, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-4925 MEDIUM

Integer signedness error in epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-4926 MEDIUM

epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 does not properly determine whether there is remaining packet data to process, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-4927 HIGH

Integer signedness error in the get_type_length function in epan/dissectors/packet-btsdp.c in the Bluetooth SDP dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.8
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.10.0
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4928 HIGH

Integer signedness error in the dissect_headers function in epan/dissectors/packet-btobex.c in the Bluetooth OBEX dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-4929 HIGH

The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not terminate packet-data processing after finding zero remaining bytes, which allows remote attackers to cause a denial of service (loop) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.8
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.10.0
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4930 MEDIUM

The dissect_dvbci_tpdu_hdr function in epan/dissectors/packet-dvbci.c in the DVB-CI dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not validate a certain length value before decrementing it, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.8
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.10.0
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4931 MEDIUM

epan/proto.c in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop) via a crafted packet that is not properly handled by the GSM RR dissector.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.8
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.10.0
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4932 MEDIUM

Multiple array index errors in epan/dissectors/packet-gsm_a_common.c in the GSM A Common dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allow remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.8
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.10.0
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4933 MEDIUM

The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet-trace file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.8
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.10.0
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4934 MEDIUM

The netmon_open function in wiretap/netmon.c in the Netmon file parser in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize certain structure members, which allows remote attackers to cause a denial of service (application crash) via a crafted packet-trace file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.8
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.10.0
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4935 MEDIUM

The dissect_per_length_determinant function in epan/dissectors/packet-per.c in the ASN.1 PER dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not initialize a length field in certain abnormal situations, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.3
wireshark wireshark 1.8.8
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.10.0
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.2
wireshark wireshark 1.8.7
CVE-2013-4936 MEDIUM

The IsDFP_Frame function in plugins/profinet/packet-pn-rt.c in the PROFINET Real-Time dissector in Wireshark 1.10.x before 1.10.1 does not validate MAC addresses, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.0
CVE-2013-5717 MEDIUM

The Bluetooth HCI ACL dissector in Wireshark 1.10.x before 1.10.2 does not properly maintain a certain free list, which allows remote attackers to cause a denial of service (application crash) via a crafted packet that is not properly handled by the wmem_block_alloc function in epan/wmem/wmem_allocator_block.c.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.1
wireshark wireshark 1.10.0
CVE-2013-5718 MEDIUM

The dissect_nbap_T_dCH_ID function in epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 does not restrict the dch_id value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.2
CVE-2013-5719 MEDIUM

epan/dissectors/packet-assa_r3.c in the ASSA R3 dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.2
CVE-2013-5720 MEDIUM

Buffer overflow in the RTPS dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.2
CVE-2013-5721 MEDIUM

The dissect_mq_rr function in epan/dissectors/packet-mq.c in the MQ dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 does not properly determine when to enter a certain loop, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.2
CVE-2013-5722 MEDIUM

Unspecified vulnerability in the LDAP dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.2
CVE-2013-6336 MEDIUM

The ieee802154_map_rec function in epan/dissectors/packet-ieee802154.c in the IEEE 802.15.4 dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 uses an incorrect pointer chain, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2013-6337 MEDIUM

Unspecified vulnerability in the NBAP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2013-6338 MEDIUM

The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2013-6339 MEDIUM

The dissect_openwire_type function in epan/dissectors/packet-openwire.c in the OpenWire dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial of service (loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2013-6340 MEDIUM

epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2013-7112 MEDIUM

The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 does not check for empty lines, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.11
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2013-7113 MEDIUM

epan/dissectors/packet-bssgp.c in the BSSGP dissector in Wireshark 1.10.x before 1.10.4 incorrectly relies on a global variable, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.0
CVE-2013-7114 MEDIUM

Multiple buffer overflows in the create_ntlmssp_v2_key function in epan/dissectors/packet-ntlmssp.c in the NTLMSSP v2 dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 allow remote attackers to cause a denial of service (application crash) via a long domain name in a packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.8.11
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2014-2281 MEDIUM

The nfs_name_snoop_add_name function in epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 does not validate a certain length value, which allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted NFS packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.8.12
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.10.5
wireshark wireshark 1.8.11
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.4
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2014-2282 MEDIUM

The dissect_protocol_data_parameter function in epan/dissectors/packet-m3ua.c in the M3UA dissector in Wireshark 1.10.x before 1.10.6 does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) via a crafted SS7 MTP3 packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.0
CVE-2014-2283 MEDIUM

epan/dissectors/packet-rlc in the RLC dissector in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 uses inconsistent memory-management approaches, which allows remote attackers to cause a denial of service (use-after-free error and application crash) via a crafted UMTS Radio Link Control packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.8.12
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.10.5
wireshark wireshark 1.8.11
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.4
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2014-2299 HIGH

Buffer overflow in the mpeg_read function in wiretap/mpeg.c in the MPEG parser in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a large record in MPEG data.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.8.12
wireshark wireshark 1.8.8
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.8.1
wireshark wireshark 1.8.6
wireshark wireshark 1.8.9
wireshark wireshark 1.10.5
wireshark wireshark 1.8.11
wireshark wireshark 1.8.0
wireshark wireshark 1.8.5
wireshark wireshark 1.8.4
wireshark wireshark 1.8.7
wireshark wireshark 1.8.3
wireshark wireshark 1.10.4
wireshark wireshark 1.10.0
wireshark wireshark 1.8.10
wireshark wireshark 1.8.2
CVE-2014-2907 MEDIUM

The srtp_add_address function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not properly update SRTP conversation data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.0
CVE-2014-4020 MEDIUM

The dissect_frame function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent an error condition, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-4174 HIGH

wiretap/libpcap.c in the libpcap file parser in Wireshark 1.10.x before 1.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted packet-trace file that includes a large packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.0
CVE-2014-5161 MEDIUM

The dissect_log function in plugins/irda/packet-irda.c in the IrDA dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' characters, which allows remote attackers to cause a denial of service (buffer underflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-5162 MEDIUM

The read_new_line function in wiretap/catapult_dct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote attackers to cause a denial of service (off-by-one buffer underflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-5163 MEDIUM

The APN decode functionality in (1) epan/dissectors/packet-gtp.c and (2) epan/dissectors/packet-gsm_a_gm.c in the GTP and GSM Management dissectors in Wireshark 1.10.x before 1.10.9 does not completely initialize a certain buffer, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-5164 MEDIUM

The rlc_decode_li function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.10.x before 1.10.9 initializes a certain structure member only after this member is used, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-5165 MEDIUM

The dissect_ber_constrained_bitstring function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.10.x before 1.10.9 does not properly validate padding values, which allows remote attackers to cause a denial of service (buffer underflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6421 MEDIUM

Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x before 1.10.10 allows remote attackers to cause a denial of service (application crash) via a crafted packet that leverages split memory ownership between the SDP and RTP dissectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6422 MEDIUM

The SDP dissector in Wireshark 1.10.x before 1.10.10 creates duplicate hashtables for a media channel, which allows remote attackers to cause a denial of service (application crash) via a crafted packet to the RTP dissector.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6423 MEDIUM

The tvb_raw_text_add function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service (infinite loop) via an empty line.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6424 MEDIUM

The dissect_v9_v10_pdu_data function in epan/dissectors/packet-netflow.c in the Netflow dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 refers to incorrect offset and start variables, which allows remote attackers to cause a denial of service (uninitialized memory read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6425 MEDIUM

The (1) get_quoted_string and (2) get_unquoted_string functions in epan/dissectors/packet-cups.c in the CUPS dissector in Wireshark 1.12.x before 1.12.1 allow remote attackers to cause a denial of service (buffer over-read and application crash) via a CUPS packet that lacks a trailing '\0' character.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.0
CVE-2014-6426 MEDIUM

The dissect_hip_tlv function in epan/dissectors/packet-hip.c in the HIP dissector in Wireshark 1.12.x before 1.12.1 does not properly handle a NULL tree, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.0
CVE-2014-6427 MEDIUM

Off-by-one error in the is_rtsp_request_or_reply function in epan/dissectors/packet-rtsp.c in the RTSP dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service (application crash) via a crafted packet that triggers parsing of a token located one position beyond the current position.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6428 MEDIUM

The dissect_spdu function in epan/dissectors/packet-ses.c in the SES dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not initialize a certain ID value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6429 MEDIUM

The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not properly handle empty input data, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6430 MEDIUM

The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not validate bitmask data, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6431 MEDIUM

Buffer overflow in the SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service (application crash) via a crafted file that triggers writes of uncompressed bytes beyond the end of the output buffer.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-6432 MEDIUM

The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not prevent data overwrites during copy operations, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.8
wireshark wireshark 1.10.9
wireshark wireshark 1.10.0
wireshark wireshark 1.10.7
CVE-2014-8710 MEDIUM

The decompress_sigcomp_message function in epan/sigcomp-udvm.c in the SigComp UDVM dissector in Wireshark 1.10.x before 1.10.11 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.12.1
CVE-2014-8711 MEDIUM

Multiple integer overflows in epan/dissectors/packet-amqp.c in the AMQP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allow remote attackers to cause a denial of service (application crash) via a crafted amqp_0_10 PDU in a packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.12.1
CVE-2014-8712 MEDIUM

The build_expert_data function in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.12.1
CVE-2014-8713 MEDIUM

Stack-based buffer overflow in the build_expert_data function in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.12.1
CVE-2014-8714 MEDIUM

The dissect_write_structured_field function in epan/dissectors/packet-tn5250.c in the TN5250 dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.12.1
CVE-2015-0559 MEDIUM

Multiple use-after-free vulnerabilities in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 allow remote attackers to cause a denial of service (application crash) via a crafted packet, related to the use of packet-scope memory instead of pinfo-scope memory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
opensuse opensuse 13.1
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
opensuse opensuse 13.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-0560 MEDIUM

The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 does not initialize certain data structures, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-19,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
opensuse opensuse 13.1
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
opensuse opensuse 13.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-0561 MEDIUM

asn1/lpp/lpp.cnf in the LPP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 does not validate a certain index value, which allows remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
opensuse opensuse 13.1
oracle solaris 11.2
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
opensuse opensuse 13.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-0562 MEDIUM

Multiple use-after-free vulnerabilities in epan/dissectors/packet-dec-dnart.c in the DEC DNA Routing Protocol dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 allow remote attackers to cause a denial of service (application crash) via a crafted packet, related to the use of packet-scope memory instead of pinfo-scope memory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-0563 MEDIUM

epan/dissectors/packet-smtp.c in the SMTP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 uses an incorrect length value for certain string-append operations, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
opensuse opensuse 13.1
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
opensuse opensuse 13.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-0564 MEDIUM

Buffer underflow in the ssl_decrypt_record function in epan/dissectors/packet-ssl-utils.c in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 allows remote attackers to cause a denial of service (application crash) via a crafted packet that is improperly handled during decryption of an SSL session.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
opensuse opensuse 13.1
oracle solaris 11.2
debian debian_linux 8.0
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
opensuse opensuse 13.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
oracle linux 7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
debian debian_linux 7.0
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-2187 MEDIUM

The dissect_atn_cpdlc_heur function in asn1/atn-cpdlc/packet-atn-cpdlc-template.c in the ATN-CPDLC dissector in Wireshark 1.12.x before 1.12.4 does not properly follow the TRY/ENDTRY code requirements, which allows remote attackers to cause a denial of service (stack memory corruption and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
opensuse opensuse 13.1
wireshark wireshark 1.12.0
opensuse opensuse 13.2
wireshark wireshark 1.12.1
CVE-2015-2188 MEDIUM

epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet that is improperly handled during decompression.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-19,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.2
opensuse opensuse 13.1
debian debian_linux 8.0
opensuse opensuse 13.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
oracle linux 7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.0
wireshark wireshark 1.12.1
wireshark wireshark 1.10.12
wireshark wireshark 1.12.3
wireshark wireshark 1.10.3
oracle solaris 11.2
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
mageia mageia 4.0
wireshark wireshark 1.10.8
debian debian_linux 7.0
wireshark wireshark 1.10.11
CVE-2015-2189 MEDIUM

Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via an invalid Interface Statistics Block (ISB) interface ID in a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.2
opensuse opensuse 13.1
debian debian_linux 8.0
opensuse opensuse 13.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
oracle linux 7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.0
wireshark wireshark 1.12.1
wireshark wireshark 1.10.12
wireshark wireshark 1.12.3
wireshark wireshark 1.10.3
oracle solaris 11.2
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
mageia mageia 4.0
wireshark wireshark 1.10.8
debian debian_linux 7.0
wireshark wireshark 1.10.11
CVE-2015-2190 MEDIUM

epan/proto.c in Wireshark 1.12.x before 1.12.4 does not properly handle integer data types greater than 32 bits in size, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet that is improperly handled by the LLDP dissector.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-19,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
opensuse opensuse 13.1
oracle solaris 11.2
wireshark wireshark 1.12.0
opensuse opensuse 13.2
wireshark wireshark 1.12.1
CVE-2015-2191 MEDIUM

Integer overflow in the dissect_tnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted length field in a packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.12
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
opensuse opensuse 13.1
debian debian_linux 8.0
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
opensuse opensuse 13.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
mageia mageia 4.0
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
debian debian_linux 7.0
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-2192 MEDIUM

Integer overflow in the dissect_osd2_cdb_continuation function in epan/dissectors/packet-scsi-osd.c in the SCSI OSD dissector in Wireshark 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted length field in a packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
opensuse opensuse 13.1
wireshark wireshark 1.12.0
opensuse opensuse 13.2
wireshark wireshark 1.12.1
CVE-2015-3182 MEDIUM

epan/dissectors/packet-dec-dnart.c in the DECnet NSP/RT dissector in Wireshark 1.10.12 through 1.10.14 mishandles a certain strdup return value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.12
wireshark wireshark 1.10.14
wireshark wireshark 1.10.13
CVE-2015-3808 HIGH

The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in Wireshark 1.12.x before 1.12.5 does not reject a zero length, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-3809 HIGH

The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in Wireshark 1.12.x before 1.12.5 does not properly track the current offset, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-3810 HIGH

epan/dissectors/packet-websocket.c in the WebSocket dissector in Wireshark 1.12.x before 1.12.5 uses a recursive algorithm, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-3811 MEDIUM

epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.14 and 1.12.x before 1.12.5 improperly refers to previously processed bytes, which allows remote attackers to cause a denial of service (application crash) via a crafted packet, a different vulnerability than CVE-2015-2188.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-17,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.12
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
oracle solaris 11.2
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.12.4
oracle linux 7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.13
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-3812 HIGH

Multiple memory leaks in the x11_init_protocol function in epan/dissectors/packet-x11.c in the X11 dissector in Wireshark 1.10.x before 1.10.14 and 1.12.x before 1.12.5 allow remote attackers to cause a denial of service (memory consumption) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.12
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
oracle solaris 11.2
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.12.4
oracle linux 7
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.13
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-3813 MEDIUM

The fragment_add_work function in epan/reassemble.c in the packet-reassembly feature in Wireshark 1.12.x before 1.12.5 does not properly determine the defragmentation state in a case of an insufficient snapshot length, which allows remote attackers to cause a denial of service (memory consumption) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-3814 MEDIUM

The (1) dissect_tfs_request and (2) dissect_tfs_response functions in epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in Wireshark 1.10.x before 1.10.14 and 1.12.x before 1.12.5 interpret a zero value as a length rather than an error condition, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.10.12
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.10.3
oracle solaris 11.2
wireshark wireshark 1.10.1
wireshark wireshark 1.10.2
wireshark wireshark 1.10.5
wireshark wireshark 1.10.6
wireshark wireshark 1.10.9
wireshark wireshark 1.10.10
wireshark wireshark 1.10.7
wireshark wireshark 1.12.4
wireshark wireshark 1.10.4
wireshark wireshark 1.12.0
wireshark wireshark 1.10.14
wireshark wireshark 1.10.8
wireshark wireshark 1.10.0
wireshark wireshark 1.10.13
wireshark wireshark 1.10.11
wireshark wireshark 1.12.1
CVE-2015-3815 MEDIUM

The detect_version function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not check the length of the payload, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a packet with a crafted payload, as demonstrated by a length of zero, a different vulnerability than CVE-2015-3906.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-3906 MEDIUM

The logcat_dump_text function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not properly handle a lack of \0 termination, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted message in a packet, a different vulnerability than CVE-2015-3815.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-4651 MEDIUM

The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before 1.12.6 does not properly determine whether enough memory is available for storing IP address strings, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
debian debian_linux 8.0
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-4652 MEDIUM

epan/dissectors/packet-gsm_a_dtap.c in the GSM DTAP dissector in Wireshark 1.12.x before 1.12.6 does not properly validate digit characters, which allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to the de_emerg_num_list and de_bcd_num functions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.2
debian debian_linux 8.0
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-6241 MEDIUM

The proto_tree_add_bytes_item function in epan/proto.c in the protocol-tree implementation in Wireshark 1.12.x before 1.12.7 does not properly terminate a data structure after a failure to locate a number within a string, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-6242 MEDIUM

The wmem_block_split_free_chunk function in epan/wmem/wmem_allocator_block.c in the wmem block allocator in the memory manager in Wireshark 1.12.x before 1.12.7 does not properly consider a certain case of multiple realloc operations that restore a memory chunk to its original size, which allows remote attackers to cause a denial of service (incorrect free operation and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-6243 MEDIUM

The dissector-table implementation in epan/packet.c in Wireshark 1.12.x before 1.12.7 mishandles table searches for empty strings, which allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to the (1) dissector_get_string_handle and (2) dissector_get_default_string_handle functions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
oracle linux 7
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-6244 MEDIUM

The dissect_zbee_secure function in epan/dissectors/packet-zbee-security.c in the ZigBee dissector in Wireshark 1.12.x before 1.12.7 improperly relies on length fields contained in packet data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
oracle linux 7
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-6245 MEDIUM

epan/dissectors/packet-gsm_rlcmac.c in the GSM RLC/MAC dissector in Wireshark 1.12.x before 1.12.7 uses incorrect integer data types, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
oracle linux 7
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-6246 MEDIUM

The dissect_wa_payload function in epan/dissectors/packet-waveagent.c in the WaveAgent dissector in Wireshark 1.12.x before 1.12.7 mishandles large tag values, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
oracle linux 7
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-6247 MEDIUM

The dissect_openflow_tablemod_v5 function in epan/dissectors/packet-openflow_v5.c in the OpenFlow dissector in Wireshark 1.12.x before 1.12.7 does not validate a certain offset value, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-6248 MEDIUM

The ptvcursor_add function in the ptvcursor implementation in epan/proto.c in Wireshark 1.12.x before 1.12.7 does not check whether the expected amount of data is available, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
oracle linux 7
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-6249 MEDIUM

The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before 1.12.7 does not prevent the conflicting use of a table for both IPv4 and IPv6 addresses, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-7830 MEDIUM

The pcapng_read_if_descr_block function in wiretap/pcapng.c in the pcapng parser in Wireshark 1.12.x before 1.12.8 uses too many levels of pointer indirection, which allows remote attackers to cause a denial of service (incorrect free and application crash) via a crafted packet that triggers interface-filter copying.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2015-8711 MEDIUM

epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate conversation data, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8712 MEDIUM

The dissect_hsdsch_channel_info function in epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not validate the number of PDUs, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8713 MEDIUM

epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not properly reserve memory for channel ID mappings, which allows remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8714 MEDIUM

The dissect_dcom_OBJREF function in epan/dissectors/packet-dcom.c in the DCOM dissector in Wireshark 1.12.x before 1.12.9 does not initialize a certain IPv4 data structure, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8715 MEDIUM

epan/dissectors/packet-alljoyn.c in the AllJoyn dissector in Wireshark 1.12.x before 1.12.9 does not check for empty arguments, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8716 MEDIUM

The init_t38_info_conv function in epan/dissectors/packet-t38.c in the T.38 dissector in Wireshark 1.12.x before 1.12.9 does not ensure that a conversation exists, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8717 MEDIUM

The dissect_sdp function in epan/dissectors/packet-sdp.c in the SDP dissector in Wireshark 1.12.x before 1.12.9 does not prevent use of a negative media count, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8718 MEDIUM

Double free vulnerability in epan/dissectors/packet-nlm.c in the NLM dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1, when the "Match MSG/RES packets for async NLM" option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8719 MEDIUM

The dissect_dns_answer function in epan/dissectors/packet-dns.c in the DNS dissector in Wireshark 1.12.x before 1.12.9 mishandles the EDNS0 Client Subnet option, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8720 MEDIUM

The dissect_ber_GeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly checks an sscanf return value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8721 MEDIUM

Buffer overflow in the tvb_uncompress function in epan/tvbuff_zlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service (application crash) via a crafted packet with zlib compression.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8722 MEDIUM

epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the frame pointer, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8723 MEDIUM

The AirPDcapPacketProcess function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the relationship between the total length and the capture length, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8724 MEDIUM

The AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not verify the WPA broadcast key length, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8725 MEDIUM

The dissect_diameter_base_framed_ipv6_prefix function in epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the IPv6 prefix length, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8726 MEDIUM

wiretap/vwr.c in the VeriWave file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate certain signature and Modulation and Coding Scheme (MCS) data, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8727 MEDIUM

The dissect_rsvp_common function in epan/dissectors/packet-rsvp.c in the RSVP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not properly maintain request-key data, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8728 MEDIUM

The Mobile Identity parser in (1) epan/dissectors/packet-ansi_a.c in the ANSI A dissector and (2) epan/dissectors/packet-gsm_a_common.c in the GSM A dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly uses the tvb_bcd_dig_to_wmem_packet_str function, which allows remote attackers to cause a denial of service (buffer overflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8729 MEDIUM

The ascend_seek function in wiretap/ascendtext.c in the Ascend file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not ensure the presence of a '\0' character at the end of a date string, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8730 MEDIUM

epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the number of items, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8731 MEDIUM

The dissct_rsl_ipaccess_msg function in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not reject unknown TLV types, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8732 MEDIUM

The dissect_zcl_pwr_prof_pwrprofstatersp function in epan/dissectors/packet-zbee-zcl-general.c in the ZigBee ZCL dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the Total Profile Number field, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8733 MEDIUM

The ngsniffer_process_record function in wiretap/ngsniffer.c in the Sniffer file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the relationships between record lengths and record header lengths, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.4
wireshark wireshark 1.12.1
CVE-2015-8734 MEDIUM

The dissect_nwp function in epan/dissectors/packet-nwp.c in the NWP dissector in Wireshark 2.0.x before 2.0.1 mishandles the packet type, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2015-8735 MEDIUM

The get_value function in epan/dissectors/packet-btatt.c in the Bluetooth Attribute (aka BT ATT) dissector in Wireshark 2.0.x before 2.0.1 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (invalid write operation and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2015-8736 MEDIUM

The mp2t_find_next_pcr function in wiretap/mp2t.c in the MP2T file parser in Wireshark 2.0.x before 2.0.1 does not reserve memory for a trailer, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2015-8737 MEDIUM

The mp2t_open function in wiretap/mp2t.c in the MP2T file parser in Wireshark 2.0.x before 2.0.1 does not validate the bit rate, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2015-8738 MEDIUM

The s7comm_decode_ud_cpu_szl_subfunc function in epan/dissectors/packet-s7comm_szl_ids.c in the S7COMM dissector in Wireshark 2.0.x before 2.0.1 does not validate the list count in an SZL response, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2015-8739 MEDIUM

The ipmi_fmt_udpport function in epan/dissectors/packet-ipmi.c in the IPMI dissector in Wireshark 2.0.x before 2.0.1 improperly attempts to access a packet scope, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2015-8740 MEDIUM

The dissect_tds7_colmetadata_token function in epan/dissectors/packet-tds.c in the TDS dissector in Wireshark 2.0.x before 2.0.1 does not validate the number of columns, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2015-8741 MEDIUM

The dissect_ppi function in epan/dissectors/packet-ppi.c in the PPI dissector in Wireshark 2.0.x before 2.0.1 does not initialize a packet-header data structure, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2015-8742 MEDIUM

The dissect_CPMSetBindings function in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.1 does not validate the column size, which allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
CVE-2016-2521 HIGH

Untrusted search path vulnerability in the WiresharkApplication class in ui/qt/wireshark_application.cpp in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 on Windows allows local users to gain privileges via a Trojan horse riched20.dll.dll file in the current working directory, related to use of QLibrary.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-2522 MEDIUM

The dissect_ber_constrained_bitstring function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 2.0.x before 2.0.2 does not verify that a certain length is nonzero, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-2523 HIGH

The dnp3_al_process_object function in epan/dissectors/packet-dnp.c in the DNP3 dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-2524 MEDIUM

epan/dissectors/packet-x509af.c in the X.509AF dissector in Wireshark 2.0.x before 2.0.2 mishandles the algorithm ID, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-2525 MEDIUM

epan/dissectors/packet-http2.c in the HTTP/2 dissector in Wireshark 2.0.x before 2.0.2 does not limit the amount of header data, which allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-2526 MEDIUM

epan/dissectors/packet-hiqnet.c in the HiQnet dissector in Wireshark 2.0.x before 2.0.2 does not validate the data type, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-2527 MEDIUM

wiretap/nettrace_3gpp_32_423.c in the 3GPP TS 32.423 Trace file parser in Wireshark 2.0.x before 2.0.2 does not ensure that a '\0' character is present at the end of certain strings, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-2528 MEDIUM

The dissect_nhdr_extopt function in epan/dissectors/packet-lbmc.c in the LBMC dissector in Wireshark 2.0.x before 2.0.2 does not validate length values, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-2529 MEDIUM

The iseries_check_file_type function in wiretap/iseries.c in the iSeries file parser in Wireshark 2.0.x before 2.0.2 does not consider that a line may lack the "OBJECT PROTOCOL" substring, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-2530 MEDIUM

The dissct_rsl_ipaccess_msg function in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 mishandles the case of an unrecognized TLV type, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet, a different vulnerability than CVE-2016-2531.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-2531 MEDIUM

Off-by-one error in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet that triggers a 0xff tag value, a different vulnerability than CVE-2016-2530.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-2532 MEDIUM

The dissect_llrp_parameters function in epan/dissectors/packet-llrp.c in the LLRP dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 does not limit the recursion depth, which allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-4006 MEDIUM

epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service (stack memory consumption and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-4076 MEDIUM

epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 2.0.x before 2.0.3 does not properly initialize memory for search patterns, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-4077 MEDIUM

epan/reassemble.c in TShark in Wireshark 2.0.x before 2.0.3 relies on incorrect special-case handling of truncated Tvb data structures, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-4078 MEDIUM

The IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not properly restrict element lists, which allows remote attackers to cause a denial of service (deep recursion and application crash) via a crafted packet, related to epan/dissectors/packet-capwap.c and epan/dissectors/packet-ieee80211.c.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-4079 MEDIUM

epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not verify BER identifiers, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
debian debian_linux 8.0
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2016-4080 MEDIUM

epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 misparses timestamp fields, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-4081 MEDIUM

epan/dissectors/packet-iax2.c in the IAX2 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-4082 MEDIUM

epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses the wrong variable to index an array, which allows remote attackers to cause a denial of service (out-of-bounds access and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
debian debian_linux 8.0
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2016-4083 MEDIUM

epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 does not ensure that data is available before array allocation, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-4084 MEDIUM

Integer signedness error in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 allows remote attackers to cause a denial of service (integer overflow and application crash) via a crafted packet that triggers an unexpected array size.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-4085 MEDIUM

Stack-based buffer overflow in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.12.x before 1.12.11 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long string in a packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
debian debian_linux 8.0
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2016-4415 MEDIUM

wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 2.x before 2.0.2 incorrectly increases a certain octet count, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-4416 MEDIUM

epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in Wireshark 2.x before 2.0.2 mishandles the Grouping subfield, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-4417 MEDIUM

Off-by-one error in epan/dissectors/packet-gsm_abis_oml.c in the GSM A-bis OML dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet that triggers a 0xff tag value.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-4418 MEDIUM

epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet that triggers an empty set.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-4419 MEDIUM

epan/dissectors/packet-spice.c in the SPICE dissector in Wireshark 2.x before 2.0.2 mishandles capability data, which allows remote attackers to cause a denial of service (large loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-4420 MEDIUM

The NFS dissector in Wireshark 2.x before 2.0.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.0
wireshark wireshark 2.0.1
CVE-2016-4421 MEDIUM

epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote attackers to cause a denial of service (deep recursion, stack consumption, and application crash) via a packet that specifies deeply nested data.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.8
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-5350 MEDIUM

epan/dissectors/packet-dcerpc-spoolss.c in the SPOOLS component in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles unexpected offsets, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-5351 MEDIUM

epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the lack of an EAPOL_RSN_KEY, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-5352 MEDIUM

epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 2.x before 2.0.4 mishandles certain length values, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-5353 MEDIUM

epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the reserved C/T value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-5354 MEDIUM

The USB subsystem in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles class types, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-5355 MEDIUM

wiretap/toshiba.c in the Toshiba file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-5356 MEDIUM

wiretap/cosine.c in the CoSine file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-5357 MEDIUM

wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
oracle solaris 11.3
wireshark wireshark 1.12.1
CVE-2016-5358 MEDIUM

epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the packet-header data type, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
oracle solaris 11.3
CVE-2016-5359 MEDIUM

epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 1.12.x before 1.12.12 mishandles offsets, which allows remote attackers to cause a denial of service (integer overflow and infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-6503 MEDIUM

The CORBA IDL dissectors in Wireshark 2.x before 2.0.5 on 64-bit Windows platforms do not properly interact with Visual C++ compiler options, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-6504 MEDIUM

epan/dissectors/packet-ncp2222.inc in the NDS dissector in Wireshark 1.12.x before 1.12.13 does not properly maintain a ptvc data structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.12
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 1.12.9
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 1.12.7
wireshark wireshark 1.12.1
CVE-2016-6505 MEDIUM

epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-369,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 2.0.4
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.12
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-6506 MEDIUM

epan/dissectors/packet-wsp.c in the WSP dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 2.0.4
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.12
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-6507 MEDIUM

epan/dissectors/packet-mmse.c in the MMSE dissector in Wireshark 1.12.x before 1.12.13 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 2.0.4
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.12
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-6508 MEDIUM

epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (large loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 2.0.4
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.12
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-6509 MEDIUM

epan/dissectors/packet-ldss.c in the LDSS dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 mishandles conversations, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 2.0.4
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.12
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-6510 MEDIUM

Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 2.0.4
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.12
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-6511 MEDIUM

epan/proto.c in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (OpenFlow dissector large loop) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 1.12.3
wireshark wireshark 1.12.6
wireshark wireshark 1.12.2
wireshark wireshark 2.0.4
wireshark wireshark 1.12.11
wireshark wireshark 1.12.8
wireshark wireshark 1.12.12
wireshark wireshark 1.12.10
wireshark wireshark 1.12.4
wireshark wireshark 2.0.1
wireshark wireshark 1.12.9
wireshark wireshark 2.0.2
wireshark wireshark 1.12.5
wireshark wireshark 1.12.0
wireshark wireshark 2.0.0
wireshark wireshark 1.12.7
wireshark wireshark 2.0.3
wireshark wireshark 1.12.1
CVE-2016-6512 MEDIUM

epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an overflow check in the tvb_get_guintvar function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet, related to the MMSE, WAP, WBXML, and WSP dissectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-6513 MEDIUM

epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 2.x before 2.0.5 does not restrict the recursion depth, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-7175 MEDIUM

epan/dissectors/packet-qnet6.c in the QNX6 QNET dissector in Wireshark 2.x before 2.0.6 mishandles MAC address data, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-7176 MEDIUM

epan/dissectors/packet-h225.c in the H.225 dissector in Wireshark 2.x before 2.0.6 calls snprintf with one of its input buffers as the output buffer, which allows remote attackers to cause a denial of service (copy overlap and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-7177 MEDIUM

epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-7178 MEDIUM

epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 2.x before 2.0.6 does not ensure that memory is allocated for certain data structures, which allows remote attackers to cause a denial of service (invalid write access and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-7179 MEDIUM

Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-7180 MEDIUM

epan/dissectors/packet-ipmi-trace.c in the IPMI trace dissector in Wireshark 2.x before 2.0.6 does not properly consider whether a string is constant, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.0.3
wireshark wireshark 2.0.1
CVE-2016-7957 MEDIUM

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.0
CVE-2016-7958 MEDIUM

In Wireshark 2.2.0, the NCP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/CMakeLists.txt by registering this dissector.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.0
CVE-2016-9372 MEDIUM

In Wireshark 2.2.0 to 2.2.1, the Profinet I/O dissector could loop excessively, triggered by network traffic or a capture file. This was addressed in plugins/profinet/packet-pn-rtc-one.c by rejecting input with too many I/O objects.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.1
wireshark wireshark 2.2.0
CVE-2016-9373 MEDIUM

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dcerpc-nt.c and epan/dissectors/packet-dcerpc-spoolss.c by using the wmem file scope for private strings.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.7
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.1
CVE-2016-9374 MEDIUM

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the AllJoyn dissector could crash with a buffer over-read, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-alljoyn.c by ensuring that a length variable properly tracked the state of a signature variable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.7
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.1
CVE-2016-9375 MEDIUM

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dtn.c by checking whether SDNV evaluation was successful.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.7
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.1
CVE-2016-9376 MEDIUM

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflow_v5.c by ensuring that certain length values were sufficiently large.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.2
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.7
wireshark wireshark 2.0.5
wireshark wireshark 2.0.0
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.1
CVE-2017-11406 HIGH

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by rejecting invalid Frame Control parameter values.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-11407 MEDIUM

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-11408 MEDIUM

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the AMQP dissector could crash. This was addressed in epan/dissectors/packet-amqp.c by checking for successful list dissection.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.13
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.12
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.2.7
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.0.10
CVE-2017-11409 HIGH

In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was addressed in epan/dissectors/packet-gprs-llc.c by using a different integer data type.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-834,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-11410 HIGH

In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding validation of the relationships between indexes and lengths. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-7702.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.13
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.12
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.2.7
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.0.10
CVE-2017-11411 HIGH

In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-opensafety.c by adding length validation. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9350.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.13
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.12
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.2.7
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.0.10
CVE-2017-13764 MEDIUM

In Wireshark 2.4.0, the Modbus dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/packet-mbtcp.c by adding length validation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark 2.4.0
CVE-2017-13765 MEDIUM

In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the IrCOMM dissector has a buffer over-read and application crash. This was addressed in plugins/irda/packet-ircomm.c by adding length validation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark 2.4.0
wireshark wireshark *
CVE-2017-13766 MEDIUM

In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. This was addressed in plugins/profinet/packet-dcerpc-pn-io.c by adding string validation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.13
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.12
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.2.7
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.4.0
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.0.10
CVE-2017-13767 HIGH

In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-msdp.c by adding length validation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.13
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.12
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.2.7
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.4.0
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.0.10
CVE-2017-15189 MEDIUM

In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by adding decrements.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
wireshark wireshark 2.4.0
wireshark wireshark 2.4.1
CVE-2017-15190 MEDIUM

In Wireshark 2.4.0 to 2.4.1, the RTSP dissector could crash. This was addressed in epan/dissectors/packet-rtsp.c by correcting the scope of a variable.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 2.4.0
wireshark wireshark 2.4.1
CVE-2017-15191 MEDIUM

In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-134,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-15192 MEDIUM

In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by considering a case where not all of the BTATT packets have the same encapsulation level.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.2.5
wireshark wireshark 2.2.1
wireshark wireshark 2.2.8
wireshark wireshark 2.2.9
wireshark wireshark 2.2.7
wireshark wireshark 2.2.2
wireshark wireshark 2.2.3
wireshark wireshark 2.4.0
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.4.1
CVE-2017-15193 HIGH

In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-mbim.c by changing the memory-allocation approach.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.2.5
wireshark wireshark 2.2.1
wireshark wireshark 2.2.8
wireshark wireshark 2.2.9
wireshark wireshark 2.2.7
wireshark wireshark 2.2.2
wireshark wireshark 2.2.3
wireshark wireshark 2.4.0
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.4.1
CVE-2017-17083 MEDIUM

In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was addressed in epan/dissectors/packet-netbios.c by ensuring that write operations are bounded by the beginning of a buffer.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-754,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
debian debian_linux 8.0
wireshark wireshark 2.2.5
wireshark wireshark 2.2.1
wireshark wireshark 2.2.8
wireshark wireshark 2.2.9
wireshark wireshark 2.2.10
wireshark wireshark 2.2.7
wireshark wireshark 2.2.2
wireshark wireshark 2.2.3
wireshark wireshark 2.4.0
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.4.2
debian debian_linux 9.0
wireshark wireshark 2.4.1
CVE-2017-17084 MEDIUM

In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the IWARP_MPA dissector could crash. This was addressed in epan/dissectors/packet-iwarp-mpa.c by validating a ULPDU length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-754,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
debian debian_linux 8.0
wireshark wireshark 2.2.5
wireshark wireshark 2.2.1
wireshark wireshark 2.2.8
wireshark wireshark 2.2.9
wireshark wireshark 2.2.10
wireshark wireshark 2.2.7
wireshark wireshark 2.2.2
wireshark wireshark 2.2.3
wireshark wireshark 2.4.0
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.4.2
debian debian_linux 9.0
wireshark wireshark 2.4.1
CVE-2017-17085 MEDIUM

In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety dissector could crash. This was addressed in epan/dissectors/packet-cipsafety.c by validating the packet length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-754,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
debian debian_linux 8.0
wireshark wireshark 2.2.5
wireshark wireshark 2.2.1
wireshark wireshark 2.2.8
wireshark wireshark 2.2.9
wireshark wireshark 2.2.10
wireshark wireshark 2.2.7
wireshark wireshark 2.2.2
wireshark wireshark 2.2.3
wireshark wireshark 2.4.0
wireshark wireshark 2.2.0
wireshark wireshark 2.2.6
wireshark wireshark 2.4.2
debian debian_linux 9.0
wireshark wireshark 2.4.1
CVE-2017-17935 MEDIUM

The File_read_line function in epan/wslua/wslua_file.c in Wireshark through 2.2.11 does not properly strip '\n' characters, which allows remote attackers to cause a denial of service (buffer underflow and application crash) via a crafted packet that triggers the attempted processing of an empty line.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-17997 MEDIUM

In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by validating an IPv4 address. This vulnerability is similar to CVE-2017-9343.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-5596 MEDIUM

In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.4
wireshark wireshark 2.0.9
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
CVE-2017-5597 MEDIUM

In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the DHCPv6 dissector could go into a large loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dhcpv6.c by changing a data type to avoid an integer overflow.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
wireshark wireshark 2.0.4
wireshark wireshark 2.0.9
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
CVE-2017-6014 HIGH

In Wireshark 2.2.4 and earlier, a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to read from will not advance, causing continuous attempts to read the same zero length packet. This will quickly exhaust all system memory.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-6467 MEDIUM

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a Netscaler file parser infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by changing the restrictions on file size.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-6468 MEDIUM

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser crash, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by validating the relationship between pages and records.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-6469 MEDIUM

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an LDSS dissector crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-ldss.c by ensuring that memory is allocated for a certain data structure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-6470 HIGH

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-iax2.c by constraining packet lateness.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-6471 MEDIUM

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by validating the capability length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-6472 MEDIUM

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an RTMPT dissector infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-rtmpt.c by properly incrementing a certain sequence value.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-6473 MEDIUM

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a K12 file parser crash, triggered by a malformed capture file. This was addressed in wiretap/k12.c by validating the relationships between lengths and offsets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-6474 MEDIUM

In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by validating record sizes.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-7700 HIGH

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring a nonzero record size.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-7701 HIGH

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-bgp.c by using a different integer data type.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.10
CVE-2017-7702 HIGH

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.10
CVE-2017-7703 MEDIUM

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the IMAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-imap.c by calculating a line's end correctly.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.10
CVE-2017-7704 HIGH

In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.2.2
wireshark wireshark 2.2.5
wireshark wireshark 2.2.1
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
CVE-2017-7705 HIGH

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-rpcrdma.c by correctly checking for going beyond the maximum offset.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.10
CVE-2017-7745 HIGH

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SIGCOMP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-sigcomp.c by correcting a memory-size check.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.10
CVE-2017-7746 MEDIUM

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-slsk.c by adding checks for the remaining length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.10
CVE-2017-7747 MEDIUM

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-packetbb.c by restricting additions to the protocol tree.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
debian debian_linux 8.0
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.10
CVE-2017-7748 HIGH

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by adding a length check.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.4
wireshark wireshark 2.0.4
wireshark wireshark 2.0.9
wireshark wireshark 2.0.11
wireshark wireshark 2.2.5
wireshark wireshark 2.0.5
wireshark wireshark 2.2.1
wireshark wireshark 2.0.6
wireshark wireshark 2.0.1
wireshark wireshark 2.0.2
wireshark wireshark 2.0.7
wireshark wireshark 2.2.2
wireshark wireshark 2.0.0
wireshark wireshark 2.0.8
wireshark wireshark 2.0.3
wireshark wireshark 2.2.3
wireshark wireshark 2.2.0
wireshark wireshark 2.0.10
CVE-2017-9343 MEDIUM

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the MSNIP dissector misuses a NULL pointer. This was addressed in epan/dissectors/packet-msnip.c by validating an IPv4 address.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9344 MEDIUM

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-369,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-9345 HIGH

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-dns.c by trying to detect self-referencing pointers.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9346 HIGH

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the SoulSeek dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-slsk.c by making loop bounds more explicit.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9347 MEDIUM

In Wireshark 2.2.0 to 2.2.6, the ROS dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/asn1/ros/packet-ros-template.c by validating an OID.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9348 MEDIUM

In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-dof.c by validating a size value.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9349 HIGH

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM dissector has an infinite loop. This was addressed in epan/dissectors/packet-dcm.c by validating a length value.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2017-9350 HIGH

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the openSAFETY dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-opensafety.c by checking for a negative length.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,CWE-770,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9351 MEDIUM

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by extracting the Vendor Class Identifier more carefully.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9352 HIGH

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bazaar dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by ensuring that backwards parsing cannot occur.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9353 MEDIUM

In Wireshark 2.2.0 to 2.2.6, the IPv6 dissector could crash. This was addressed in epan/dissectors/packet-ipv6.c by validating an IPv6 address.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9354 MEDIUM

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the RGMP dissector could crash. This was addressed in epan/dissectors/packet-rgmp.c by validating an IPv4 address.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2017-9616 MEDIUM

In Wireshark 2.2.7, overly deep mp4 chunks may cause stack exhaustion (uncontrolled recursion) in the dissect_mp4_box function in epan/dissectors/file-mp4.c.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-674,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.7
CVE-2017-9617 MEDIUM

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-674,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.7
CVE-2017-9766 MEDIUM

In Wireshark 2.2.7, PROFINET IO data with a high recursion depth allows remote attackers to cause a denial of service (stack exhaustion) in the dissect_IODWriteReq function in plugins/profinet/packet-dcerpc-pn-io.c.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-674,

Products Affected

Vendor Product Version
wireshark wireshark 2.2.7
debian debian_linux 8.0
CVE-2018-11354 MEDIUM

In Wireshark 2.6.0, the IEEE 1905.1a dissector could crash. This was addressed in epan/dissectors/packet-ieee1905.c by making a certain correction to string handling.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
CVE-2018-11355 MEDIUM

In Wireshark 2.6.0, the RTCP dissector could crash. This was addressed in epan/dissectors/packet-rtcp.c by avoiding a buffer overflow for packet status chunks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
CVE-2018-11356 MEDIUM

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the DNS dissector could crash. This was addressed in epan/dissectors/packet-dns.c by avoiding a NULL pointer dereference for an empty name in an SRV record.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-11357 MEDIUM

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LTP dissector and other dissectors could consume excessive memory. This was addressed in epan/tvbuff.c by rejecting negative lengths.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-11358 MEDIUM

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the Q.931 dissector could crash. This was addressed in epan/dissectors/packet-q931.c by avoiding a use-after-free after a malformed packet prevented certain cleanup.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-11359 MEDIUM

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-11360 MEDIUM

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the GSM A DTAP dissector could crash. This was addressed in epan/dissectors/packet-gsm_a_dtap.c by fixing an off-by-one error that caused a buffer overflow.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-11361 MEDIUM

In Wireshark 2.6.0, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/dot11decrypt.c by avoiding a buffer overflow during FTE processing in Dot11DecryptTDLSDeriveKey.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
CVE-2018-11362 MEDIUM

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by avoiding a buffer over-read upon encountering a missing '\0' character.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
wireshark wireshark 2.6.0
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-14339 MEDIUM

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the MMSE dissector could go into an infinite loop. This was addressed in epan/proto.c by adding offset and length validation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-14340 MEDIUM

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-14341 HIGH

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the DICOM dissector could go into a large or infinite loop. This was addressed in epan/dissectors/packet-dcm.c by preventing an offset overflow.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-14342 HIGH

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was addressed in epan/dissectors/packet-bgp.c by validating Path Attribute lengths.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-834,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-14343 MEDIUM

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash. This was addressed in epan/dissectors/packet-ber.c by ensuring that length values do not exceed the maximum signed integer.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-14344 MEDIUM

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash. This was addressed in epan/dissectors/packet-ismp.c by validating the IPX address length to avoid a buffer over-read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-14367 MEDIUM

In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash. This was addressed in epan/dissectors/packet-coap.c by properly checking for a NULL condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-252,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-14368 HIGH

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by properly handling items that are too long.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-14369 MEDIUM

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash. This was addressed in epan/dissectors/packet-http2.c by verifying that header data was found before proceeding to header decompression.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-14370 MEDIUM

In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/airpdcap.c via bounds checking that prevents a buffer over-read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-14438 MEDIUM

In Wireshark through 2.6.2, the create_app_running_mutex function in wsutil/file_util.c calls SetSecurityDescriptorDacl to set a NULL DACL, which allows attackers to modify the access control arbitrarily.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-16056 MEDIUM

In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth Attribute Protocol dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by verifying that a dissector for a specific UUID exists.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-16057 MEDIUM

In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Radiotap dissector could crash. This was addressed in epan/dissectors/packet-ieee80211-radiotap-iter.c by validating iterator operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-16058 MEDIUM

In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector could crash. This was addressed in epan/dissectors/packet-btavdtp.c by properly initializing a data structure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-665,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-18225 MEDIUM

In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that the piv length is correctly computed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-682,

Products Affected

Vendor Product Version
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-18226 HIGH

In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This was addressed in epan/dissectors/packet-steam-ihs-discovery.c by changing the memory-management approach.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-772,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-18227 MEDIUM

In Wireshark 2.6.0 to 2.6.3 and 2.4.0 to 2.4.9, the MS-WSP protocol dissector could crash. This was addressed in epan/dissectors/packet-mswsp.c by properly handling NULL return values.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-19622 MEDIUM

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-19623 MEDIUM

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-19624 MEDIUM

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-19625 MEDIUM

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-19626 MEDIUM

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-908,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-19627 MEDIUM

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-19628 MEDIUM

In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-369,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-5334 MEDIUM

In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by correcting the signature timestamp bounds checks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-5335 MEDIUM

In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP dissector could crash. This was addressed in epan/dissectors/packet-wcp.c by validating the available buffer length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-5336 MEDIUM

In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the recursion depth.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-6836 HIGH

The netmonrec_comment_destroy function in wiretap/netmon.c in Wireshark through 2.4.4 performs a free operation on an uninitialized memory address, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-763,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-7320 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-7321 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not proceeding with dissection after encountering an unexpected type.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-834,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-7322 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking for integer wraparound.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7323 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring that a calculated length was monotonically increasing.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-834,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7324 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7325 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an infinite loop that was addressed by validating a length field.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-7326 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-lltd.c had an infinite loop that was addressed by using a correct integer data type.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-7327 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-openflow_v6.c had an infinite loop that was addressed by validating property lengths.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-7328 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-usb.c had an infinite loop that was addressed by rejecting short frame header lengths.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-7329 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite loop that was addressed by correcting off-by-one errors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-193,CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-7330 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thread.c had an infinite loop that was addressed by using a correct integer data type.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-7331 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-ber.c had an infinite loop that was addressed by validating a length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-7332 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-reload.c had an infinite loop that was addressed by validating a length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7333 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpcrdma.c had an infinite loop that was addressed by validating a chunk size.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-7334 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the UMTS MAC dissector could crash. This was addressed in epan/dissectors/packet-umts_mac.c by rejecting a certain reserved value.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-7335 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.c by rejecting lengths that are too small.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-7336 MEDIUM

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol dissector could crash. This was addressed in epan/dissectors/packet-fcp.c by checking for a NULL pointer.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7337 MEDIUM

In Wireshark 2.4.0 to 2.4.4, the DOCSIS protocol dissector could crash. This was addressed in plugins/docsis/packet-docsis.c by removing the recursive algorithm that had been used for concatenated PDUs.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7417 MEDIUM

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the IPMI dissector could crash. This was addressed in epan/dissectors/packet-ipmi-picmg.c by adding support for crafted packets that lack an IPMI header.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7418 MEDIUM

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the SIGCOMP dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by correcting the extraction of the length value.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7419 MEDIUM

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/nbap.cnf by ensuring DCH ID initialization.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-665,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-7420 MEDIUM

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed in wiretap/pcapng.c by adding a block-size check for sysdig event blocks.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-7421 MEDIUM

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the DMP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-dmp.c by correctly supporting a bounded number of Security Categories for a DMP Security Classification.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-9256 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the LWAPP dissector could crash. This was addressed in epan/dissectors/packet-lwapp.c by limiting the encapsulation levels to restrict the recursion depth.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-9257 MEDIUM

In Wireshark 2.4.0 to 2.4.5, the CQL dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-cql.c by checking for a nonzero number of columns.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-9258 MEDIUM

In Wireshark 2.4.0 to 2.4.5, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by preserving valid data sources.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-9259 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the MP4 dissector could crash. This was addressed in epan/dissectors/file-mp4.c by restricting the box recursion depth.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-9260 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the IEEE 802.15.4 dissector could crash. This was addressed in epan/dissectors/packet-ieee802154.c by ensuring that an allocation step occurs.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-9261 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop that ends with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-nbap.c by prohibiting the self-linking of DCH-IDs.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-834,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-9262 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the VLAN dissector could crash. This was addressed in epan/dissectors/packet-vlan.c by limiting VLAN tag nesting to restrict the recursion depth.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-9263 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the Kerberos dissector could crash. This was addressed in epan/dissectors/packet-kerberos.c by ensuring a nonzero key length.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-9264 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the ADB dissector could crash with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-adb.c by checking for a length inconsistency.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-9265 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-tn3270.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-9266 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-isup.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-9267 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-lapd.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
CVE-2018-9268 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-smb2.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-9269 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-giop.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
debian debian_linux 8.0
debian debian_linux 7.0
wireshark wireshark *
CVE-2018-9270 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/oids.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-9271 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-multipart.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-9272 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-h223.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2018-9273 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-pcp.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2018-9274 MEDIUM

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, ui/failure_message.c has a memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2019-10894 MEDIUM

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-617,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark 3.0.0
canonical ubuntu_linux 18.04
opensuse leap 42.3
fedoraproject fedora 29
canonical ubuntu_linux 18.10
opensuse leap 15.0
fedoraproject fedora 30
canonical ubuntu_linux 16.04
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-10895 MEDIUM

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark 3.0.0
canonical ubuntu_linux 18.04
opensuse leap 42.3
fedoraproject fedora 29
canonical ubuntu_linux 18.10
opensuse leap 15.0
fedoraproject fedora 30
canonical ubuntu_linux 16.04
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-10896 MEDIUM

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF dissector could crash. This was addressed in epan/dissectors/packet-dof.c by properly handling generated IID and OID bytes.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
fedoraproject fedora 30
canonical ubuntu_linux 16.04
opensuse leap 15.1
wireshark wireshark 3.0.0
canonical ubuntu_linux 18.04
opensuse leap 42.3
fedoraproject fedora 29
wireshark wireshark *
canonical ubuntu_linux 18.10
debian debian_linux 9.0
opensuse leap 15.0
CVE-2019-10897 MEDIUM

In Wireshark 3.0.0, the IEEE 802.11 dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-ieee80211.c by detecting cases in which the bit offset does not advance.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
fedoraproject fedora 30
wireshark wireshark 3.0.0
fedoraproject fedora 29
CVE-2019-10898 MEDIUM

In Wireshark 3.0.0, the GSUP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gsm_gsup.c by rejecting an invalid Information Element length.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
fedoraproject fedora 30
wireshark wireshark 3.0.0
fedoraproject fedora 29
CVE-2019-10899 MEDIUM

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC dissector could crash. This was addressed in epan/dissectors/packet-srvloc.c by preventing a heap-based buffer under-read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark 3.0.0
canonical ubuntu_linux 18.04
opensuse leap 42.3
fedoraproject fedora 29
canonical ubuntu_linux 18.10
opensuse leap 15.0
fedoraproject fedora 30
canonical ubuntu_linux 16.04
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-10900 MEDIUM

In Wireshark 3.0.0, the Rbm dissector could go into an infinite loop. This was addressed in epan/dissectors/file-rbm.c by handling unknown object types safely.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
fedoraproject fedora 30
wireshark wireshark 3.0.0
fedoraproject fedora 29
CVE-2019-10901 MEDIUM

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark 3.0.0
canonical ubuntu_linux 18.04
opensuse leap 42.3
fedoraproject fedora 29
canonical ubuntu_linux 18.10
opensuse leap 15.0
fedoraproject fedora 30
canonical ubuntu_linux 16.04
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-10902 MEDIUM

In Wireshark 3.0.0, the TSDNS dissector could crash. This was addressed in epan/dissectors/packet-tsdns.c by splitting strings safely.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-252,

Products Affected

Vendor Product Version
fedoraproject fedora 30
wireshark wireshark 3.0.0
fedoraproject fedora 29
CVE-2019-10903 MEDIUM

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was addressed in epan/dissectors/packet-dcerpc-spoolss.c by adding a boundary check.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark 3.0.0
canonical ubuntu_linux 18.04
opensuse leap 42.3
fedoraproject fedora 29
canonical ubuntu_linux 18.10
opensuse leap 15.0
fedoraproject fedora 30
canonical ubuntu_linux 16.04
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-12295 MEDIUM

In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/packet.c by restricting the number of layers and consequently limiting recursion.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-674,

Products Affected

Vendor Product Version
f5 big-ip_link_controller *
f5 big-ip_application_security_manager 15.1.0
f5 big-ip_application_security_manager *
f5 big-ip_fraud_protection_service 15.1.0
f5 big-ip_analytics 15.1.0
f5 big-ip_local_traffic_manager 15.1.0
f5 big-ip_global_traffic_manager *
canonical ubuntu_linux 16.04
f5 big-ip_application_acceleration_manager *
f5 big-ip_domain_name_system *
wireshark wireshark *
f5 big-ip_fraud_protection_service *
f5 big-ip_local_traffic_manager *
debian debian_linux 9.0
f5 big-ip_policy_enforcement_manager *
f5 big-ip_access_policy_manager 15.1.0
f5 big-ip_global_traffic_manager 15.1.0
f5 big-ip_advanced_firewall_manager *
f5 big-ip_policy_enforcement_manager 15.1.0
f5 big-ip_analytics *
f5 big-ip_advanced_firewall_manager 15.1.0
canonical ubuntu_linux 18.04
f5 big-ip_access_policy_manager *
f5 big-ip_domain_name_system 15.1.0
f5 big-ip_webaccelerator *
f5 big-ip_application_acceleration_manager 15.1.0
f5 big-ip_edge_gateway *
f5 big-ip_edge_gateway 15.1.0
f5 big-ip_link_controller 15.1.0
f5 big-ip_webaccelerator 15.1.0
canonical ubuntu_linux 19.04
CVE-2019-13619 MEDIUM

In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer increments.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
fedoraproject fedora 30
canonical ubuntu_linux 16.04
opensuse leap 15.1
canonical ubuntu_linux 18.04
fedoraproject fedora 29
wireshark wireshark *
debian debian_linux 9.0
canonical ubuntu_linux 19.04
opensuse leap 15.0
CVE-2019-16319 HIGH

In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by checking for a message length of zero.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-19553 MEDIUM

In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector could crash. This was addressed in epan/dissectors/asn1/cms/packet-cms-template.c by ensuring that an object identifier is set to NULL after a ContentInfo dissection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-909,

Products Affected

Vendor Product Version
oracle solaris 11
opensuse leap 15.1
oracle zfs_storage_appliance 8.8
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-5716 MEDIUM

In Wireshark 2.6.0 to 2.6.5, the 6LoWPAN dissector could crash. This was addressed in epan/dissectors/packet-6lowpan.c by avoiding use of a TVB before its creation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-5717 MEDIUM

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the P_MUL dissector could crash. This was addressed in epan/dissectors/packet-p_mul.c by rejecting the invalid sequence number of zero.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-5718 MEDIUM

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a get_t61_string length check.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-5719 MEDIUM

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in epan/dissectors/packet-isakmp.c by properly handling the case of a missing decryption data block.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
debian debian_linux 8.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-5721 MEDIUM

In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. This was addressed in epan/dissectors/packet-enip.c by changing the memory-management approach so that a use-after-free is avoided.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2019-9208 MEDIUM

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/tcap.cnf by avoiding NULL pointer dereferences.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2019-9209 MEDIUM

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. This was addressed in epan/dissectors/packet-ber.c by preventing a buffer overflow associated with excessive digits in time values.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-193,CWE-787,

Products Affected

Vendor Product Version
canonical ubuntu_linux 16.04
debian debian_linux 8.0
opensuse leap 15.1
canonical ubuntu_linux 18.04
opensuse leap 42.3
wireshark wireshark *
canonical ubuntu_linux 18.10
debian debian_linux 9.0
opensuse leap 15.0
CVE-2019-9214 MEDIUM

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector could crash. This was addressed in epan/dissectors/packet-rpcap.c by avoiding an attempted dereference of a NULL conversation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-11647 MEDIUM

In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This was addressed in epan/dissectors/packet-bacapp.c by limiting the amount of recursion.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-674,

Products Affected

Vendor Product Version
opensuse leap 15.2
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-13164 MEDIUM

In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-674,

Products Affected

Vendor Product Version
fedoraproject fedora 31
opensuse leap 15.2
opensuse leap 15.1
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-15466 MEDIUM

In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
opensuse leap 15.2
opensuse leap 15.1
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-17498 MEDIUM

In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. This was addressed in epan/dissectors/packet-kafka.c by avoiding a double free during LZ4 decompression.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
fedoraproject fedora 31
opensuse leap 15.2
opensuse leap 15.1
oracle zfs_storage_appliance_kit 8.8
fedoraproject fedora 32
wireshark wireshark *
CVE-2020-25862 MEDIUM

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by changing the handling of the invalid 0xFFFF checksum.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-354,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 33
oracle zfs_storage_appliance_firmware 8.8
opensuse leap 15.2
opensuse leap 15.1
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-25863 MEDIUM

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 33
oracle zfs_storage_appliance_firmware 8.8
opensuse leap 15.2
opensuse leap 15.1
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-25866 MEDIUM

In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer dereference because a buffer was sized for compressed (not uncompressed) messages. This was addressed in epan/dissectors/packet-blip.c by allowing reasonable compression ratios and rejecting ZIP bombs.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 33
opensuse leap 15.2
opensuse leap 15.1
oracle zfs_storage_appliance_kit 8.8
fedoraproject fedora 32
wireshark wireshark *
CVE-2020-26418 MEDIUM

Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 3.1 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L 1.6 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
fedoraproject fedora 33
oracle zfs_storage_appliance_kit 8.8
wireshark wireshark 3.4.0
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-26419 MEDIUM

Memory leak in the dissection engine in Wireshark 3.4.0 allows denial of service via packet injection or crafted capture file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
cve@gitlab.com 3.1 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L 1.6 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
fedoraproject fedora 33
oracle zfs_storage_appliance_kit 8.8
wireshark wireshark 3.4.0
fedoraproject fedora 32
CVE-2020-26420 MEDIUM

Memory leak in RTPS protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 3.1 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L 1.6 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
fedoraproject fedora 33
oracle zfs_storage_appliance_kit 8.8
wireshark wireshark 3.4.0
fedoraproject fedora 32
wireshark wireshark *
CVE-2020-26421 MEDIUM

Crash in USB HID protocol dissector and possibly other dissectors in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
cve@gitlab.com 4.2 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L 1.6 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
fedoraproject fedora 33
oracle zfs_storage_appliance_kit 8.8
wireshark wireshark 3.4.0
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-26422 MEDIUM

Buffer overflow in QUIC dissector in Wireshark 3.4.0 to 3.4.1 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
oracle zfs_storage_appliance_kit 8.8
wireshark wireshark 3.4.0
wireshark wireshark 3.4.1
CVE-2020-26575 MEDIUM

In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop. This was addressed in epan/dissectors/packet-fbzero.c by correcting the implementation of offset advancement.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
fedoraproject fedora 33
oracle zfs_storage_appliance_firmware 8.8
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-28030 MEDIUM

In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-682,CWE-770,CWE-835,

Products Affected

Vendor Product Version
fedoraproject fedora 33
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-7044 MEDIUM

In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-193,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 30
oracle solaris 11
opensuse leap 15.1
oracle zfs_storage_appliance_kit 8.8
fedoraproject fedora 32
wireshark wireshark *
CVE-2020-7045 LOW

In Wireshark 3.0.x before 3.0.8, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by validating opcodes.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-9428 MEDIUM

In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the EAP dissector could crash. This was addressed in epan/dissectors/packet-eap.c by using more careful sscanf parsing.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 30
opensuse leap 15.1
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-9429 MEDIUM

In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by handling the situation where a certain data structure intentionally has a NULL value.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
opensuse leap 15.1
wireshark wireshark *
CVE-2020-9430 MEDIUM

In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the WiMax DLMAP dissector could crash. This was addressed in plugins/epan/wimax/msg_dlmap.c by validating a length field.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 30
opensuse leap 15.1
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2020-9431 MEDIUM

In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could leak memory. This was addressed in epan/dissectors/packet-lte-rrc.c by adjusting certain append operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 30
opensuse leap 15.1
fedoraproject fedora 32
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-22173 MEDIUM

Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
fedoraproject fedora 33
oracle zfs_storage_appliance 8.8
fedoraproject fedora 32
wireshark wireshark *
CVE-2021-22174 MEDIUM

Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
fedoraproject fedora 33
oracle zfs_storage_appliance 8.8
fedoraproject fedora 32
wireshark wireshark *
CVE-2021-22191 MEDIUM

Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
oracle zfs_storage_appliance 8.8
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-22207 MEDIUM

Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6
cve@gitlab.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
fedoraproject fedora 33
debian debian_linux 10.0
oracle zfs_storage_appliance_kit 8.8
debian debian_linux 11.0
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-22222 MEDIUM

Infinite loop in DVB-S2-BB dissector in Wireshark 3.4.0 to 3.4.5 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
oracle enterprise_manager_ops_center 12.4.0.0
debian debian_linux 10.0
oracle instantis_enterprisetrack 17.2
oracle instantis_enterprisetrack 17.1
oracle zfs_storage_appliance_kit 8.8
debian debian_linux 11.0
oracle instantis_enterprisetrack 17.3
wireshark wireshark *
CVE-2021-22235 MEDIUM

Crash in DNP dissector in Wireshark 3.4.0 to 3.4.6 and 3.2.0 to 3.2.14 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
debian debian_linux 10.0
debian debian_linux 11.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-39920 MEDIUM

NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
CVE-2021-39921 MEDIUM

NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-39922 MEDIUM

Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
fedoraproject fedora 35
debian debian_linux 10.0
debian debian_linux 11.0
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-39923 MEDIUM

Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-834,

Products Affected

Vendor Product Version
debian debian_linux 10.0
debian debian_linux 11.0
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-39924 MEDIUM

Large loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-834,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-39925 MEDIUM

Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-39926 MEDIUM

Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
fedoraproject fedora 35
debian debian_linux 10.0
debian debian_linux 11.0
fedoraproject fedora 34
wireshark wireshark *
CVE-2021-39928 MEDIUM

NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-39929 MEDIUM

Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-674,

Products Affected

Vendor Product Version
fedoraproject fedora 35
debian debian_linux 10.0
debian debian_linux 11.0
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2021-4181 MEDIUM

Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
oracle http_server 12.2.1.3.0
oracle http_server 12.2.1.4.0
fedoraproject fedora 35
oracle zfs_storage_appliance_kit 8.8
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
wireshark wireshark 3.6.0
CVE-2021-4182 MEDIUM

Crash in the RFC 7468 dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
oracle http_server 12.2.1.3.0
oracle http_server 12.2.1.4.0
fedoraproject fedora 35
oracle zfs_storage_appliance_kit 8.8
fedoraproject fedora 34
wireshark wireshark *
wireshark wireshark 3.6.0
CVE-2021-4183 MEDIUM

Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6
cve@gitlab.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
oracle http_server 12.2.1.3.0
oracle http_server 12.2.1.4.0
fedoraproject fedora 35
oracle zfs_storage_appliance_kit 8.8
fedoraproject fedora 34
wireshark wireshark 3.6.0
CVE-2021-4184 MEDIUM

Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
oracle http_server 12.2.1.3.0
oracle http_server 12.2.1.4.0
fedoraproject fedora 35
oracle zfs_storage_appliance_kit 8.8
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
wireshark wireshark 3.6.0
CVE-2021-4185 MEDIUM

Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
oracle http_server 12.2.1.3.0
oracle http_server 12.2.1.4.0
fedoraproject fedora 35
oracle zfs_storage_appliance_kit 8.8
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
wireshark wireshark 3.6.0
CVE-2021-4186 MEDIUM

Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
CVE-2021-4190 MEDIUM

Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-834,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
wireshark wireshark 3.6.0
CVE-2022-0581 MEDIUM

Crash in the CMS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2022-0582 HIGH

Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: HIGH

Problem Type: CWE-476,

Products Affected

Vendor Product Version
wireshark wireshark 3.6.1
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
wireshark wireshark 3.6.0
CVE-2022-0583 MEDIUM

Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2022-0585 MEDIUM

Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 2.8 1.4
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-834,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2022-0586 HIGH

Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: HIGH

Problem Type: CWE-835,

Products Affected

Vendor Product Version
fedoraproject fedora 35
fedoraproject fedora 34
wireshark wireshark *
debian debian_linux 9.0
CVE-2022-3190

Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
wireshark wireshark *
CVE-2022-3724

Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file on Windows

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2022-3725

Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
fedoraproject fedora 37
wireshark wireshark *
CVE-2022-4344

Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2022-4345

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-0411

Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-0412

TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H 2.8 4.2
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 10.0
wireshark wireshark *
CVE-2023-0413

Dissection engine bug in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-0414

Crash in the EAP dissector in Wireshark 4.0.0 to 4.0.2 allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-0415

iSCSI dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-0416

GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-0417

Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-0666

Due to failure in validating the length provided by an attacker-crafted RTPS packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.

Products Affected

Vendor Product Version
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-0667

Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-0668

Due to failure in validating the length provided by an attacker-crafted IEEE-C37.118 packet, Wireshark version 4.0.5 and prior, by default, is susceptible to a heap-based buffer overflow, and possibly code execution in the context of the process running Wireshark.

Products Affected

Vendor Product Version
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-1161

ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H 2.8 4.2
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 10.0
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-1992

RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
fedoraproject fedora 38
fedoraproject fedora 36
debian debian_linux 10.0
debian debian_linux 12.0
fedoraproject fedora 37
wireshark wireshark *
CVE-2023-1993

LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
fedoraproject fedora 38
fedoraproject fedora 36
debian debian_linux 10.0
debian debian_linux 12.0
fedoraproject fedora 37
wireshark wireshark *
CVE-2023-1994

GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
fedoraproject fedora 38
fedoraproject fedora 36
debian debian_linux 10.0
debian debian_linux 12.0
fedoraproject fedora 37
wireshark wireshark *
CVE-2023-2854

BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-2855

Candump log parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-2856

VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 10.0
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-2857

BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-2858

NetScaler file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 10.0
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-2879

GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 10.0
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-2906

Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-2952

XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
debian debian_linux 10.0
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-3648

Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-3649

iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-4511

BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-4512

CBOR dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-4513

BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-5371

RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2023-6174

SSH dissector crash in Wireshark 4.0.0 to 4.0.10 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
debian debian_linux 12.0
wireshark wireshark *
CVE-2023-6175

NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2024-0207

HTTP3 dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
wireshark wireshark 4.2.0
CVE-2024-0208

GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
wireshark wireshark 4.2.0
CVE-2024-0209

IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
wireshark wireshark 4.2.0
CVE-2024-0210

Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
wireshark wireshark 4.2.0
CVE-2024-0211

DOCSIS dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark 4.2.0
CVE-2024-11595

FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2024-11596

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2024-24476

A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the pan/addr_resolv.c, and ws_manuf_lookup_str(), size components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.

Products Affected

Vendor Product Version
wireshark wireshark *
fedoraproject fedora 40
CVE-2024-24479

A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.

Products Affected

Vendor Product Version
wireshark wireshark *
fedoraproject fedora 40
CVE-2024-2955

T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
fedoraproject fedora 39
wireshark wireshark *
fedoraproject fedora 40
CVE-2024-4853

Memory handling issue in editcap could cause denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 3.6 LOW CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L 1.0 2.5

Products Affected

Vendor Product Version
fedoraproject fedora 39
wireshark wireshark *
fedoraproject fedora 40
CVE-2024-4854

MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 6.4 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H 1.6 4.7

Products Affected

Vendor Product Version
fedoraproject fedora 39
wireshark wireshark *
fedoraproject fedora 40
CVE-2024-4855

Use after free issue in editcap could cause denial of service via crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 3.6 LOW CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L 1.0 2.5

Products Affected

Vendor Product Version
fedoraproject fedora 39
wireshark wireshark *
fedoraproject fedora 40
CVE-2024-8250

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2024-8645

SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2024-9781

AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark 4.4.0
wireshark wireshark *
CVE-2025-11626

MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2025-13499

Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark *
wireshark wireshark 4.6.0
CVE-2025-13674

BPv7 dissector crash in Wireshark 4.6.0 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
wireshark wireshark 4.6.0
CVE-2025-13945

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2025-13946

MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2025-5601

Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows denial of service via packet injection or crafted capture file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2025-9817

SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
cve@gitlab.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
wireshark wireshark 4.4.9
wireshark wireshark *
CVE-2026-0959

IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H 1.6 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2026-0960

HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H 1.0 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2026-0961

BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
wireshark wireshark *
CVE-2026-0962

SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cve@gitlab.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H 1.6 3.6

Products Affected

Vendor Product Version
wireshark wireshark *