Vulnerabilities > Wireshark > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-07-16 | CVE-2008-3145 | Improper Input Validation vulnerability in Wireshark The fragment_add_work function in epan/reassemble.c in Wireshark 0.8.19 through 1.0.1 allows remote attackers to cause a denial of service (crash) via a series of fragmented packets with non-sequential fragmentation offset values, which lead to a buffer over-read. | 5.0 |
| 2008-07-10 | CVE-2008-3141 | Information Exposure vulnerability in Wireshark Unspecified vulnerability in the RMI dissector in Wireshark (formerly Ethereal) 0.9.5 through 1.0.0 allows remote attackers to read system memory via unspecified vectors. | 4.9 |
| 2008-07-10 | CVE-2008-3140 | Multiple vulnerability in Wireshark 1.0.0 The syslog dissector in Wireshark (formerly Ethereal) 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors, possibly related to an "incomplete SS7 MSU syslog encapsulated packet." | 5.0 |
| 2008-07-10 | CVE-2008-3139 | Information Exposure vulnerability in multiple products The RTMPT dissector in Wireshark (formerly Ethereal) 0.99.8 through 1.0.0 allows remote attackers to cause a denial of service (crash) via unknown vectors. | 5.0 |
| 2008-07-10 | CVE-2008-3138 | Information Exposure vulnerability in multiple products The (1) PANA and (2) KISMET dissectors in Wireshark (formerly Ethereal) 0.99.3 through 1.0.0 allow remote attackers to cause a denial of service (application stop) via unknown vectors. | 5.0 |
| 2008-07-10 | CVE-2008-3137 | Improper Input Validation vulnerability in Wireshark The GSM SMS dissector in Wireshark (formerly Ethereal) 0.99.2 through 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors. | 4.3 |
| 2008-03-31 | CVE-2008-1563 | Denial of Service vulnerability in Wireshark 0.99.8 The "decode as" feature in packet-bssap.c in the SCCP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet. network wireshark | 4.3 |
| 2008-03-31 | CVE-2008-1562 | Improper Input Validation vulnerability in Wireshark The LDAP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet, a different vulnerability than CVE-2006-5740. | 5.0 |
| 2008-03-31 | CVE-2008-1561 | Denial of Service vulnerability in Wireshark 0.99.8 Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) 0.99.5 through 0.99.8 allow remote attackers to cause a denial of service (application crash) via a malformed packet to the (1) X.509sat or (2) Roofnet dissectors. | 5.0 |
| 2008-02-28 | CVE-2008-1072 | Denial of Service vulnerability in Wireshark 0.99.7 The TFTP dissector in Wireshark (formerly Ethereal) 0.6.0 through 0.99.7, when running on Ubuntu 7.10, allows remote attackers to cause a denial of service (crash or memory consumption) via a malformed packet, possibly related to a Cairo library bug. local wireshark | 4.7 |