Ethereal Group : Security Vulnerabilities, CVEs, (Denial of service) CVSS score >= 3
The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0 through 1.2.7 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed packet trace file.
Max CVSS
4.3
EPSS Score
0.33%
Published
2010-05-12
Updated
2017-09-19
Wireshark (formerly Ethereal) 0.8.16 to 0.99.6 allows remote attackers to cause a denial of service (crash) via a malformed RPC Portmap packet.
Max CVSS
5.0
EPSS Score
0.31%
Published
2007-11-23
Updated
2018-10-15
The Bluetooth SDP dissector Wireshark (formerly Ethereal) 0.99.2 to 0.99.6 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
Max CVSS
5.0
EPSS Score
0.31%
Published
2007-11-23
Updated
2018-10-15
The MEGACO dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (long loop and resource consumption) via unknown vectors.
Max CVSS
7.8
EPSS Score
0.31%
Published
2007-11-23
Updated
2018-10-15
Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) allow remote attackers to cause a denial of service (crash) via (1) a crafted MP3 file or (2) unspecified vectors to the NCP dissector.
Max CVSS
7.1
EPSS Score
0.32%
Published
2007-11-23
Updated
2018-10-15
Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector.
Max CVSS
10.0
EPSS Score
3.81%
Published
2006-07-21
Updated
2018-10-18
Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9.4 to 0.99.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
Max CVSS
7.8
EPSS Score
1.64%
Published
2006-07-21
Updated
2018-10-18
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors.
Max CVSS
10.0
EPSS Score
2.11%
Published
2006-07-21
Updated
2018-10-18
Unspecified vulnerability in Ethereal 0.10.4 up to 0.10.14 allows remote attackers to cause a denial of service (abort) via the SNDCP dissector.
Max CVSS
5.0
EPSS Score
1.64%
Published
2006-04-25
Updated
2017-10-11
Multiple unspecified vulnerabilities in Ethereal 0.9.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via (1) an invalid display filter, or the (2) GSM SMS, (3) ASN.1-based, (4) DCERPC NT, (5) PER, (6) RPC, (7) DCERPC, and (8) ASN.1 dissectors.
Max CVSS
5.0
EPSS Score
2.20%
Published
2006-04-25
Updated
2017-10-11
Multiple unspecified vulnerabilities in Ethereal 0.8.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via the (1) Sniffer capture or (2) SMB PIPE dissector.
Max CVSS
5.0
EPSS Score
1.64%
Published
2006-04-25
Updated
2017-10-11
Multiple unspecified vulnerabilities in Ethereal 0.10.x up to 0.10.14 allow remote attackers to cause a denial of service (crash from null dereference) via (1) multiple vectors in H.248, and the (2) X.509if, (3) SRVLOC, (4) H.245, (5) AIM, and (6) general packet dissectors; and (7) the statistics counter.
Max CVSS
5.0
EPSS Score
3.51%
Published
2006-04-25
Updated
2017-10-11
Buffer overflow in Ethereal 0.9.15 up to 0.10.14 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the COPS dissector.
Max CVSS
5.0
EPSS Score
4.27%
Published
2006-04-25
Updated
2017-10-11
Multiple buffer overflows in Ethereal 0.10.x up to 0.10.14 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the (1) ALCAP dissector, (2) Network Instruments file code, or (3) NetXray/Windows Sniffer file code.
Max CVSS
5.0
EPSS Score
4.46%
Published
2006-04-25
Updated
2017-10-11
Multiple unspecified vulnerabilities in Ethereal 0.10.x up to 0.10.14 allow remote attackers to cause a denial of service (large or infinite loops) viarafted packets to the (1) UMA and (2) BER dissectors.
Max CVSS
5.0
EPSS Score
1.64%
Published
2006-04-25
Updated
2017-10-11
Unspecified vulnerability in the GTP dissector for Ethereal 0.9.1 to 0.10.13 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors.
Max CVSS
7.8
EPSS Score
1.76%
Published
2005-12-29
Updated
2017-10-11
The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service (infinite loop).
Max CVSS
5.0
EPSS Score
1.25%
Published
2005-11-01
Updated
2017-10-11
Unspecified vulnerability in the WSP dissector in Ethereal 0.10.1 to 0.10.12 allows remote attackers to cause a denial of service or corrupt memory via unknown vectors that cause Ethereal to free an invalid pointer.
Max CVSS
6.4
EPSS Score
1.00%
Published
2005-10-27
Updated
2017-10-11
Unspecified vulnerability in the X11 dissector in Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (divide-by-zero) via unknown vectors.
Max CVSS
5.0
EPSS Score
1.38%
Published
2005-10-27
Updated
2017-10-11
The SigComp UDVM in Ethereal 0.10.12 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
Max CVSS
5.0
EPSS Score
1.29%
Published
2005-10-27
Updated
2017-10-11
Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (null dereference) via unknown vectors in the (1) SCSI, (2) sFlow, or (3) RTnet dissectors.
Max CVSS
5.0
EPSS Score
1.38%
Published
2005-10-27
Updated
2017-10-11
Unspecified vulnerability in the ONC RPC dissector in Ethereal 0.10.3 to 0.10.12, when the "Dissect unknown RPC program numbers" option is enabled, allows remote attackers to cause a denial of service (memory consumption).
Max CVSS
5.0
EPSS Score
1.29%
Published
2005-10-27
Updated
2017-10-11
The BER dissector in Ethereal 0.10.3 to 0.10.12 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors.
Max CVSS
5.0
EPSS Score
1.38%
Published
2005-10-27
Updated
2017-10-11
Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (crash) via unknown vectors in (1) the IrDA dissector and (2) the SMB dissector when SMB transaction payload reassembly is enabled.
Max CVSS
5.0
EPSS Score
1.38%
Published
2005-10-27
Updated
2017-10-11
Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors in the (1) ISAKMP, (2) FC-FCS, (3) RSVP, and (4) ISIS LSP dissector.
Max CVSS
5.0
EPSS Score
1.38%
Published
2005-10-27
Updated
2017-10-11