Wireshark : Security Vulnerabilities, CVEs, (Gain Privilege) CVSS score >= 2
epan/dissectors/packet-iax2.c in the IAX2 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
Max CVSS
5.9
EPSS Score
0.36%
Published
2016-04-25
Updated
2016-12-03
epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 2.0.x before 2.0.3 does not properly initialize memory for search patterns, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Max CVSS
5.9
EPSS Score
0.38%
Published
2016-04-25
Updated
2016-12-03
2 vulnerabilities found