Vulnerabilities
Vulnerable Software
Wireshark:  >> Wireshark  >> 0.8.19  Security Vulnerabilities
Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability."
CVSS Score
9.3
EPSS Score
0.056
Published
2009-10-30
Unspecified vulnerability in Wireshark before 1.0.7 has unknown impact and attack vectors.
CVSS Score
10.0
EPSS Score
0.005
Published
2009-04-21
Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information.
CVSS Score
10.0
EPSS Score
0.345
Published
2009-04-01
Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of service via a long SMTP request, which triggers an infinite loop.
CVSS Score
5.0
EPSS Score
0.024
Published
2008-12-01
The fragment_add_work function in epan/reassemble.c in Wireshark 0.8.19 through 1.0.1 allows remote attackers to cause a denial of service (crash) via a series of fragmented packets with non-sequential fragmentation offset values, which lead to a buffer over-read.
CVSS Score
5.0
EPSS Score
0.024
Published
2008-07-16
Integer signedness error in the DNP3 dissector in Wireshark (formerly Ethereal) 0.10.12 to 0.99.6 allows remote attackers to cause a denial of service (long loop) via a malformed DNP3 packet.
CVSS Score
4.3
EPSS Score
0.094
Published
2007-11-23


Contact Us

Shodan ® - All rights reserved