Vulnerabilities > Wireshark > Wireshark > 0.10.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-10-30 | CVE-2009-3829 | Numeric Errors vulnerability in Wireshark Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability." | 9.3 |
2009-04-21 | CVE-2009-1266 | Remote Security vulnerability in Wireshark Unspecified vulnerability in Wireshark before 1.0.7 has unknown impact and attack vectors. | 10.0 |
2009-04-01 | CVE-2009-1210 | USE of Externally-Controlled Format String vulnerability in Wireshark Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. | 10.0 |
2008-12-01 | CVE-2008-5285 | Resource Management Errors vulnerability in Wireshark Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of service via a long SMTP request, which triggers an infinite loop. | 5.0 |
2008-10-22 | CVE-2008-4685 | Resource Management Errors vulnerability in Wireshark Use-after-free vulnerability in the dissect_q931_cause_ie function in packet-q931.c in the Q.931 dissector in Wireshark 0.10.3 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via certain packets that trigger an exception. | 5.0 |
2008-09-04 | CVE-2008-3933 | Improper Input Validation vulnerability in Wireshark Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncompress function. | 3.3 |
2008-02-28 | CVE-2008-1072 | Denial of Service vulnerability in Wireshark 0.99.7 The TFTP dissector in Wireshark (formerly Ethereal) 0.6.0 through 0.99.7, when running on Ubuntu 7.10, allows remote attackers to cause a denial of service (crash or memory consumption) via a malformed packet, possibly related to a Cairo library bug. local wireshark | 4.7 |
2008-02-28 | CVE-2008-1071 | Resource Management Errors vulnerability in Wireshark The SNMP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.7 allows remote attackers to cause a denial of service (crash) via a malformed packet. | 4.3 |
2008-02-28 | CVE-2008-1070 | Denial of Service vulnerability in Wireshark 0.99.7 The SCTP dissector in Wireshark (formerly Ethereal) 0.99.5 through 0.99.7 allows remote attackers to cause a denial of service (crash) via a malformed packet. | 5.0 |
2007-11-23 | CVE-2007-6113 | Numeric Errors vulnerability in Wireshark Integer signedness error in the DNP3 dissector in Wireshark (formerly Ethereal) 0.10.12 to 0.99.6 allows remote attackers to cause a denial of service (long loop) via a malformed DNP3 packet. | 4.3 |