Vulnerabilities > Wireshark > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-12-21 | CVE-2009-4376 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Wireshark Buffer overflow in the daintree_sna_read function in the Daintree SNA file parser in Wireshark 1.2.0 through 1.2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet. | 9.3 |
| 2009-10-30 | CVE-2009-3829 | Numeric Errors vulnerability in Wireshark Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability." | 9.3 |
| 2009-04-21 | CVE-2009-1266 | Remote Security vulnerability in Wireshark Unspecified vulnerability in Wireshark before 1.0.7 has unknown impact and attack vectors. | 10.0 |
| 2009-04-01 | CVE-2009-1210 | USE of Externally-Controlled Format String vulnerability in Wireshark Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. | 10.0 |
| 2008-09-02 | CVE-2008-3146 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Wireshark Multiple buffer overflows in packet_ncp2222.inc in Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allow attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted NCP packet that causes an invalid pointer to be used. | 10.0 |
| 2007-11-23 | CVE-2007-6115 | Buffer Errors vulnerability in Wireshark 0.99.5/0.99.6 Buffer overflow in the ANSI MAP dissector for Wireshark (formerly Ethereal) 0.99.5 to 0.99.6, when running on unspecified platforms, allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown vectors. | 10.0 |
| 2007-11-23 | CVE-2007-6114 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Wireshark Multiple buffer overflows in Wireshark (formerly Ethereal) 0.99.0 through 0.99.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) the SSL dissector or (2) the iSeries (OS/400) Communication trace file parser. | 10.0 |
| 2007-11-23 | CVE-2007-6112 | Buffer Errors vulnerability in Wireshark 0.99.6 Buffer overflow in the PPP dissector Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors. | 10.0 |
| 2006-07-21 | CVE-2006-3628 | USE of Externally-Controlled Format String vulnerability in multiple products Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors. | 10.0 |