Vulnerabilities > Ethereal Group
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-05-12 | CVE-2010-1455 | Improper Input Validation vulnerability in multiple products The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0 through 1.2.7 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed packet trace file. | 4.3 |
| 2007-11-23 | CVE-2007-6121 | Improper Input Validation vulnerability in multiple products Wireshark (formerly Ethereal) 0.8.16 to 0.99.6 allows remote attackers to cause a denial of service (crash) via a malformed RPC Portmap packet. | 5.0 |
| 2007-11-23 | CVE-2007-6120 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products The Bluetooth SDP dissector Wireshark (formerly Ethereal) 0.99.2 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. | 5.0 |
| 2007-11-23 | CVE-2007-6118 | Remote vulnerability in Wireshark 0.99.6 The MEGACO dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (long loop and resource consumption) via unknown vectors. | 7.8 |
| 2007-11-23 | CVE-2007-6111 | Remote vulnerability in Wireshark 0.99.6 Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) allow remote attackers to cause a denial of service (crash) via (1) a crafted MP3 file or (2) unspecified vectors to the NCP dissector. | 7.1 |
| 2006-07-21 | CVE-2006-3632 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ethereal Group Ethereal Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector. | 10.0 |
| 2006-07-21 | CVE-2006-3629 | Multiple vulnerability in Wireshark Protocol Dissectors Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9.4 to 0.99.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. | 7.8 |
| 2006-07-21 | CVE-2006-3628 | USE of Externally-Controlled Format String vulnerability in multiple products Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors. | 10.0 |
| 2006-04-25 | CVE-2006-1940 | Protocol Dissector vulnerability In Versions Prior To 0.99.0 in Ethereal Unspecified vulnerability in Ethereal 0.10.4 up to 0.10.14 allows remote attackers to cause a denial of service (abort) via the SNDCP dissector. | 5.0 |
| 2006-04-25 | CVE-2006-1939 | Protocol Dissector vulnerability In Versions Prior To 0.99.0 in Ethereal Multiple unspecified vulnerabilities in Ethereal 0.9.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via (1) an invalid display filter, or the (2) GSM SMS, (3) ASN.1-based, (4) DCERPC NT, (5) PER, (6) RPC, (7) DCERPC, and (8) ASN.1 dissectors. | 5.0 |