Vulnerabilities > Wireshark

DATE CVE VULNERABILITY TITLE RISK
2006-10-27 CVE-2006-5468 Protocol Dissectors Denial of Service vulnerability in Wireshark 0.99.3
Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via unspecified vectors.
network
low complexity
wireshark
5.0
2006-10-27 CVE-2006-4805 Protocol Dissectors Denial of Service vulnerability in Wireshark
epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a zero length value when it is decoded.
network
low complexity
wireshark
5.0
2006-08-24 CVE-2006-4333 Resource Management Errors vulnerability in Wireshark
The SSCOP dissector in Wireshark (formerly Ethereal) before 0.99.3 allows remote attackers to cause a denial of service (resource consumption) via malformed packets that cause the Q.2391 dissector to use excessive memory.
network
high complexity
wireshark CWE-399
5.4
2006-08-24 CVE-2006-4332 Multiple vulnerability in Wireshark
Unspecified vulnerability in the DHCP dissector in Wireshark (formerly Ethereal) 0.10.13 through 0.99.2, when run on Windows, allows remote attackers to cause a denial of service (crash) via unspecified vectors that trigger a bug in Glib.
network
low complexity
wireshark
5.0
2006-08-24 CVE-2006-4331 Multiple vulnerability in Wireshark 0.99.2
Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote attackers to cause a denial of service (crash) via unspecified vectors.
network
low complexity
wireshark
5.0
2006-08-24 CVE-2006-4330 Multiple vulnerability in Wireshark 0.99.2
Unspecified vulnerability in the SCSI dissector in Wireshark (formerly Ethereal) 0.99.2 allows remote attackers to cause a denial of service (crash) via unspecified vectors.
network
wireshark
4.3
2006-07-21 CVE-2006-3631 Resource Management Errors vulnerability in Wireshark
Unspecified vulnerability in the SSH dissector in Wireshark (aka Ethereal) 0.9.10 to 0.99.0 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors.
network
low complexity
wireshark CWE-399
5.0
2006-07-21 CVE-2006-3630 Numeric Errors vulnerability in Wireshark 0.9.7/0.9.8/0.99.0
Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via the (1) NCP NMAS and (2) NDPS dissectors.
network
low complexity
wireshark CWE-189
7.5
2006-07-21 CVE-2006-3628 USE of Externally-Controlled Format String vulnerability in multiple products
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors.
network
low complexity
ethereal-group wireshark CWE-134
critical
10.0
2006-07-21 CVE-2006-3627 Resource Management Errors vulnerability in Wireshark
Unspecified vulnerability in the GSM BSSMAP dissector in Wireshark (aka Ethereal) 0.10.11 to 0.99.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors.
network
low complexity
wireshark CWE-399
5.0