Vulnerabilities > Ethereal Group > Ethereal > 0.9.5

DATE CVE VULNERABILITY TITLE RISK
2007-11-23 CVE-2007-6121 Improper Input Validation vulnerability in multiple products
Wireshark (formerly Ethereal) 0.8.16 to 0.99.6 allows remote attackers to cause a denial of service (crash) via a malformed RPC Portmap packet.
network
low complexity
ethereal-group wireshark CWE-20
5.0
2007-11-23 CVE-2007-6120 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
The Bluetooth SDP dissector Wireshark (formerly Ethereal) 0.99.2 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
network
low complexity
wireshark ethereal-group CWE-119
5.0
2007-11-23 CVE-2007-6111 Remote vulnerability in Wireshark 0.99.6
Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) allow remote attackers to cause a denial of service (crash) via (1) a crafted MP3 file or (2) unspecified vectors to the NCP dissector.
7.1
2006-07-21 CVE-2006-3632 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ethereal Group Ethereal
Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector.
network
low complexity
ethereal-group CWE-119
critical
10.0
2006-07-21 CVE-2006-3629 Multiple vulnerability in Wireshark Protocol Dissectors
Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9.4 to 0.99.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
network
low complexity
ethereal-group
7.8
2005-04-26 CVE-2005-1281 Denial Of Service vulnerability in Ethereal RSVP Decoding Routines
Ethereal 0.10.10 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted RSVP packet of length 4.
network
low complexity
ethereal-group
5.0
2004-12-15 CVE-2004-1145 Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files. 5.0