Wireshark

wireshark

736 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Wireshark

wireshark

736 CVEs

CVEs (736)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-0043 1Wireshark 1Wireshark Apr 29, 2026 Apr 11, 2012 N/A· v4 N/A· v3 5.8 MEDIUM· v2 Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (applic...Show more Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a series of fragmented RLC packets.Show less
CVE-2012-0042 2Redhat Wireshark 2Enterprise Linux Wireshark Apr 29, 2026 Apr 11, 2012 N/A· v4 N/A· v3 2.9 LOW· v2 Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a...Show more Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet, related to epan/to_str.c.Show less
CVE-2012-0041 2Redhat Wireshark 2Enterprise Linux Wireshark Apr 29, 2026 Apr 11, 2012 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The dissect_packet function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a capture file, as demons...Show more The dissect_packet function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a capture file, as demonstrated by an airopeek file.Show less
CVE-2011-4102 1Wireshark 1Wireshark Apr 29, 2026 Nov 3, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Heap-based buffer overflow in the erf_read_header function in wiretap/erf.c in the ERF file parser in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (application...Show more Heap-based buffer overflow in the erf_read_header function in wiretap/erf.c in the ERF file parser in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (application crash) via a malformed file.Show less
CVE-2011-4101 1Wireshark 1Wireshark Apr 29, 2026 Nov 3, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL...Show more The dissect_infiniband_common function in epan/dissectors/packet-infiniband.c in the Infiniband dissector in Wireshark 1.4.0 through 1.4.9 and 1.6.x before 1.6.3 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed packet.Show less
CVE-2011-4100 1Wireshark 1Wireshark Apr 29, 2026 Nov 3, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.3 does not initialize a certain variable, which allows remote attackers to cause a denial of service (...Show more The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.3 does not initialize a certain variable, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.Show less
CVE-2011-3484 1Wireshark 1Wireshark Apr 29, 2026 Sep 20, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial...Show more The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial of service (loop and application crash) via a malformed packet.Show less
CVE-2011-3483 1Wireshark 1Wireshark Apr 29, 2026 Sep 20, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Wireshark 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (application crash) via a malformed capture file that leads to an invalid root tvbuff, related to a "buffer exception handling vulnerabili...Show more Wireshark 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (application crash) via a malformed capture file that leads to an invalid root tvbuff, related to a "buffer exception handling vulnerability."Show less
CVE-2011-3482 1Wireshark 1Wireshark Apr 29, 2026 Sep 20, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.2 does not initialize a certain structure member, which allows remote attackers to cause a denial of s...Show more The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.2 does not initialize a certain structure member, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.Show less
CVE-2011-3360 1Wireshark 1Wireshark Apr 29, 2026 Sep 20, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 Untrusted search path vulnerability in Wireshark 1.4.x before 1.4.9 and 1.6.x before 1.6.2 allows local users to gain privileges via a Trojan horse Lua script in an unspecified directory.
CVE-2011-3266 1Wireshark 1Wireshark Apr 29, 2026 Aug 24, 2011 N/A· v4 N/A· v3 2.6 LOW· v2 The proto_tree_add_item function in Wireshark 1.6.0 through 1.6.1 and 1.4.0 through 1.4.8, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of service (infinite loop) via...Show more The proto_tree_add_item function in Wireshark 1.6.0 through 1.6.1 and 1.4.0 through 1.4.8, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of service (infinite loop) via vectors involving a malformed IKE packet and many items in a tree.Show less
CVE-2011-2698 1Wireshark 1Wireshark Apr 29, 2026 Aug 23, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Off-by-one error in the elem_cell_id_aux function in epan/dissectors/packet-ansi_a.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service (...Show more Off-by-one error in the elem_cell_id_aux function in epan/dissectors/packet-ansi_a.c in the ANSI MAP dissector in Wireshark 1.4.x before 1.4.8 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service (infinite loop) via an invalid packet.Show less
CVE-2011-2597 1Wireshark 1Wireshark Apr 29, 2026 Jul 7, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The Lucent/Ascend file parser in Wireshark 1.2.x before 1.2.18, 1.4.x through 1.4.7, and 1.6.0 allows remote attackers to cause a denial of service (infinite loop) via malformed packets.
CVE-2011-2175 1Wireshark 1Wireshark Apr 29, 2026 Jun 6, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Integer underflow in the visual_read function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a malformed Visual Ne...Show more Integer underflow in the visual_read function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a malformed Visual Networks file that triggers a heap-based buffer over-read.Show less
CVE-2011-2174 1Wireshark 1Wireshark Apr 29, 2026 Jun 6, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Double free vulnerability in the tvb_uncompress function in epan/tvbuff.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a packet with...Show more Double free vulnerability in the tvb_uncompress function in epan/tvbuff.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (application crash) via a packet with malformed data that uses zlib compression.Show less
CVE-2011-1959 1Wireshark 1Wireshark Apr 29, 2026 Jun 6, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (appli...Show more The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a denial of service (application crash) via a large length value in a snoop file that triggers a stack-based buffer over-read.Show less
CVE-2011-1958 1Wireshark 1Wireshark Apr 29, 2026 Jun 6, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Diameter dictionary file.
CVE-2011-1957 1Wireshark 1Wireshark Apr 29, 2026 Jun 6, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The dissect_dcm_main function in epan/dissectors/packet-dcm.c in the DICOM dissector in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (infinite loop) via an inv...Show more The dissect_dcm_main function in epan/dissectors/packet-dcm.c in the DICOM dissector in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (infinite loop) via an invalid PDU length.Show less
CVE-2011-1956 1Wireshark 1Wireshark Apr 29, 2026 Jun 6, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The bytes_repr_len function in Wireshark 1.4.5 uses an incorrect pointer argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via arbitrary TCP traffic.
CVE-2011-1592 1Wireshark 1Wireshark Apr 29, 2026 Apr 29, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of se...Show more The NFS dissector in epan/dissectors/packet-nfs.c in Wireshark 1.4.x before 1.4.5 on Windows uses an incorrect integer data type during decoding of SETCLIENTID calls, which allows remote attackers to cause a denial of service (application crash) via a crafted .pcap file.Show less

Previous 1...303132...37 Next