Vulnerabilities > Ethereal Group > Ethereal > 0.10.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-11-23 | CVE-2007-6121 | Improper Input Validation vulnerability in multiple products Wireshark (formerly Ethereal) 0.8.16 to 0.99.6 allows remote attackers to cause a denial of service (crash) via a malformed RPC Portmap packet. | 5.0 |
| 2007-11-23 | CVE-2007-6120 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products The Bluetooth SDP dissector Wireshark (formerly Ethereal) 0.99.2 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. | 5.0 |
| 2007-11-23 | CVE-2007-6111 | Remote vulnerability in Wireshark 0.99.6 Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) allow remote attackers to cause a denial of service (crash) via (1) a crafted MP3 file or (2) unspecified vectors to the NCP dissector. | 7.1 |
| 2006-07-21 | CVE-2006-3632 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ethereal Group Ethereal Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector. | 10.0 |
| 2006-07-21 | CVE-2006-3629 | Multiple vulnerability in Wireshark Protocol Dissectors Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9.4 to 0.99.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. | 7.8 |
| 2006-07-21 | CVE-2006-3628 | USE of Externally-Controlled Format String vulnerability in multiple products Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors. | 10.0 |
| 2005-04-26 | CVE-2005-1281 | Denial Of Service vulnerability in Ethereal RSVP Decoding Routines Ethereal 0.10.10 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted RSVP packet of length 4. | 5.0 |