Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wireshark wireshark vulnerabilities and exploits
(subscribe to this query)
694
VMScore
CVE-2017-6470
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-iax2.c by constraining packet lateness.
Wireshark Wireshark
Debian Debian Linux 8.0
694
VMScore
CVE-2017-6014
In Wireshark 2.2.4 and previous versions, a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to read from will not advance, causing continuous attempts to read the same...
Wireshark Wireshark
Debian Debian Linux 8.0
694
VMScore
CVE-2015-3808
The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in Wireshark 1.12.x prior to 1.12.5 does not reject a zero length, which allows remote malicious users to cause a denial of service (infinite loop) via a crafted packet.
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.12.3
694
VMScore
CVE-2015-3809
The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in Wireshark 1.12.x prior to 1.12.5 does not properly track the current offset, which allows remote malicious users to cause a denial of service (infinite loop) via a crafted packet.
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.12.3
694
VMScore
CVE-2015-3810
epan/dissectors/packet-websocket.c in the WebSocket dissector in Wireshark 1.12.x prior to 1.12.5 uses a recursive algorithm, which allows remote malicious users to cause a denial of service (CPU consumption) via a crafted packet.
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.12.3
694
VMScore
CVE-2015-3812
Multiple memory leaks in the x11_init_protocol function in epan/dissectors/packet-x11.c in the X11 dissector in Wireshark 1.10.x prior to 1.10.14 and 1.12.x prior to 1.12.5 allow remote malicious users to cause a denial of service (memory consumption) via a crafted packet.
Oracle Solaris 11.2
Oracle Linux 7
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.10.8
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.10.6
Wireshark Wireshark 1.10.9
Wireshark Wireshark 1.10.13
Wireshark Wireshark 1.10.12
Wireshark Wireshark 1.10.10
Wireshark Wireshark 1.10.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.10.3
Wireshark Wireshark 1.10.2
Wireshark Wireshark 1.10.1
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.10.7
Wireshark Wireshark 1.10.4
Wireshark Wireshark 1.12.3
Wireshark Wireshark 1.10.5
Wireshark Wireshark 1.10.11
694
VMScore
CVE-2013-4928
Integer signedness error in the dissect_headers function in epan/dissectors/packet-btobex.c in the Bluetooth OBEX dissector in Wireshark 1.10.x prior to 1.10.1 allows remote malicious users to cause a denial of service (infinite loop) via a crafted packet.
Wireshark Wireshark 1.10.0
694
VMScore
CVE-2013-4929
The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x prior to 1.8.9 and 1.10.x prior to 1.10.1 does not terminate packet-data processing after finding zero remaining bytes, which allows remote malicious users to cause a denial of s...
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.7
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.8
Wireshark Wireshark 1.10.0
694
VMScore
CVE-2013-2487
epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x prior to 1.8.6 uses incorrect integer data types, which allows remote malicious users to cause a denial of service (infinite loop) via crafted integer values in a pack...
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Opensuse Opensuse 12.3
Debian Debian Linux 7.0
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
694
VMScore
CVE-2007-6118
The MEGACO dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote malicious users to cause a denial of service (long loop and resource consumption) via unknown vectors.
Wireshark Wireshark 0.99.0
Wireshark Wireshark 0.99.1
Ethereal Group Ethereal 0.9.14
Wireshark Wireshark 0.99.2
Wireshark Wireshark 0.99.3
Ethereal Group Ethereal 0.99.0
Wireshark Wireshark 0.99
Wireshark Wireshark 0.99.6
Ethereal Group Ethereal 0.9.15
Ethereal Group Ethereal 0.9.16
Wireshark Wireshark 0.99.4
Wireshark Wireshark 0.99.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »