Wireshark : Security Vulnerabilities, CVEs, Published In November 2013 (Denial of service)
epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Max CVSS
4.3
EPSS Score
0.39%
Published
2013-11-04
Updated
2017-09-19
The dissect_openwire_type function in epan/dissectors/packet-openwire.c in the OpenWire dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial of service (loop) via a crafted packet.
Max CVSS
4.3
EPSS Score
0.85%
Published
2013-11-04
Updated
2017-09-19
The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Max CVSS
4.3
EPSS Score
0.39%
Published
2013-11-04
Updated
2017-09-19
Unspecified vulnerability in the NBAP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Max CVSS
4.3
EPSS Score
0.40%
Published
2013-11-04
Updated
2017-09-19
The ieee802154_map_rec function in epan/dissectors/packet-ieee802154.c in the IEEE 802.15.4 dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 uses an incorrect pointer chain, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Max CVSS
4.3
EPSS Score
0.98%
Published
2013-11-04
Updated
2017-09-19
5 vulnerabilities found