[CLOSE] OSVDB ID : 89666 - Disclosed: 2012-11-01

Description:

Wireshark contains a flaw in the DTN dissector that may allow a remote denial of service. The issue is triggered when parsing a malformed crafted packet by the dissect_version_4_primary_header or dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dtn.c. This may allow a remote attacker to cause the program to crash.

[CLOSE] OSVDB ID : 87994 - Disclosed: 2012-11-28

Description:

Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs in the EIGRP dissector during the processing of a malformed packet or when viewing a trace file containing malformed traffic. This will cause an infinite loop, which will result in a loss of availability.

[CLOSE] OSVDB ID : 70244 - Disclosed: 2010-12-31

Description:

Wireshark is prone to an overflow condition. The the 'dissect_enttec_dmx_data()' function fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted packet sent to UDP port 3333, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 71848 - Disclosed: 2011-04-15

Description:

Wireshark is prone to an overflow condition. The DECT dissector in epan/dissectors/packet-dect.c fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted packet, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 72978 - Disclosed: 2011-05-31

Description:

(Description Provided by CVE) : Double free vulnerability in the tvb_uncompress function in epan/tvbuff.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a packet with malformed data that uses zlib compression.

[CLOSE] OSVDB ID : 84785 - Disclosed: 2012-08-15

Description:

Wireshark is prone to multiple overflow conditions. The ERF dissector fails to properly sanitize user-supplied input resulting in multiple buffer overflows. With a specially crafted packet, a remote attacker can potentially execute arbitrary code or cause a denial of service.

[CLOSE] OSVDB ID : 76770 - Disclosed: 2011-11-01

Description:

(Description Provided by CVE) : Heap-based buffer overflow in the erf_read_header function in wiretap/erf.c in the ERF file parser in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (application crash) via a malformed file.

[CLOSE] OSVDB ID : 93506 - Disclosed: 2013-03-12

Description:

Wireshark contains a flaw in the ETCH dissector (packet-etch.c) that may allow a remote denial of service. The issue is triggered when handling a malformed packet. This may allow a remote attacker to crash the program.

[CLOSE] OSVDB ID : 84787 - Disclosed: 2012-08-16

Description:

Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs in the EtherCAT Mailbox dissector during the parsing of a malformed packet. This will result in loss of availability for the program.

[CLOSE] OSVDB ID : 91000 - Disclosed: 2013-03-06

Description:

Wireshark contains a flaw in the FCSP Dissector that may allow a remote denial of service. The issue is triggered when handling a specific type of malformed packet, either via the network, or when replayed via a trace file. This may allow a remote attacker to cause an infinite loop, which will crash the program.

[CLOSE] OSVDB ID : 78258 - Disclosed: 2012-01-11

Description:

Wireshark contains a flaw in the handling of capture files that may allow a remote denial of service. The issue is due to an error in the dissect_packet function in epan/packet.c. With a specially crafted capture file containing an overly long packet, a context-dependent attacker can cause the program to crash.

[CLOSE] OSVDB ID : 40454 - Disclosed: 2007-11-26

Description:

(Description Provided by CVE) : The Firebird/Interbase dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite loop or crash) via unknown vectors.

[CLOSE] OSVDB ID : 66792 - Disclosed: 2010-07-29

Description:

(Description Provided by CVE) : packet-gsm_a_rr.c in the GSM A RR dissector in Wireshark 1.2.2 through 1.2.9 allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger a NULL pointer dereference.

[CLOSE] OSVDB ID : 58238 - Disclosed: 2009-09-15

Description:

(Description Provided by CVE) : Unspecified vulnerability in packet.c in the GSM A RR dissector in Wireshark 1.2.0 and 1.2.1 allows remote attackers to cause a denial of service (application crash) via unknown vectors related to "an uninitialized dissector handle," which triggers an assertion failure.

[CLOSE] OSVDB ID : 27360 - Disclosed: 2006-07-17

Description:

The Wireshark GSM BSSMAP dissector contains a flaw that may allow a remote denial of service. The issue is triggered when by a malformed packet or trace file, and will result in loss of availability for the application.

[CLOSE] OSVDB ID : 89672 - Disclosed: 2012-12-02

Description:

Wireshark contains a flaw in the GSM RLC MAC dissector that may allow a remote denial of service. The issue is triggered when parsing a specially crafted packet. This may allow a remote attacker to cause an infinite loop and crash the system.

[CLOSE] OSVDB ID : 84777 - Disclosed: 2012-08-15

Description:

Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs in the GSM RLC MAC dissector during the parsing of a malformed packet. This will result in loss of availability for the program.

[CLOSE] OSVDB ID : 46646 - Disclosed: 2008-06-30

Description:

(Description Provided by CVE) : The GSM SMS dissector in Wireshark (formerly Ethereal) 0.99.2 through 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors.

[CLOSE] OSVDB ID : 93508 - Disclosed: 2013-03-18

Description:

Wireshark contains a flaw in the GTPv2 dissector that may allow a remote denial of service. The issue is triggered when handling a malformed packet. This may allow a remote attacker to crash the program.

[CLOSE] OSVDB ID : 90989 - Disclosed: 2013-03-06

Description:

Wireshark contains a flaw in the HART/IP dissector that may allow a remote denial of service. The issue is triggered when handling a specific type of malformed packet, either via the network, or when replayed via a trace file. This may allow a remote attacker to cause an infinite loop and a consumption of CPU resources.

[CLOSE] OSVDB ID : 52157 - Disclosed: 2009-02-06

Description:

(Description Provided by CVE) : Format string vulnerability in Wireshark 0.99.8 through 1.0.5 on non-Windows platforms allows local users to cause a denial of service (application crash) via format string specifiers in the HOME environment variable.

[CLOSE] OSVDB ID : 85884 - Disclosed: 2012-10-02

Description:

Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs in the HSRP dissector during the parsing of a malformed packet. This will result in an infinite loop and a loss of availability for the program.

[CLOSE] OSVDB ID : 40453 - Disclosed: 2007-11-26

Description:

(Description Provided by CVE) : Unspecified vulnerability in the HTTP dissector for Wireshark (formerly Ethereal) 0.10.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted chunked messages.

[CLOSE] OSVDB ID : 30068 - Disclosed: 2006-10-27

Description:

The Wireshark HTTP dissector contains a flaw that may allow a remote denial of service. The issue is triggered by a malformed packet or trace file, and will result in loss of availability for the application.

[CLOSE] OSVDB ID : 33075 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors, a different issue than CVE-2006-5468.

[CLOSE] OSVDB ID : 37643 - Disclosed: 2007-07-05

Description:

Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when a specially crafted HTTP response is received, and will result in loss of availability for the application.

[CLOSE] OSVDB ID : 87988 - Disclosed: 2012-11-28

Description:

Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when an error occurs in the ICMPv6 dissector during the processing of a malformed packet or when viewing a packet trace file containing malformed traffic. This will cause an infinite loop, which will result in a loss of availability.

[CLOSE] OSVDB ID : 82157 - Disclosed: 2012-05-22

Description:

Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when a malformed packet is processed by the IEEE 802.11 dissector, which will result in an infinite loops and a loss of availability for the program.

[CLOSE] OSVDB ID : 33074 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly Ethereal) 0.10.14 through 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.

[CLOSE] OSVDB ID : 82158 - Disclosed: 2012-05-22

Description:

Wireshark contains a flaw that may allow a remote denial of service. The issue is triggered when a malformed packet is processed by the IEEE 802.3 dissector, which will result in an infinite loops and a loss of availability for the program.