Debian Wireshark vulnerabilities

CVE-2010-3133 [CRITICAL] CVE-2010-3133: wireshark - Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 ... Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark. Scope: local book

CVE-2010-2286 [LOW] CVE-2010-2286: wireshark - The SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.7... The SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.7 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (infinite loop) via unknown vectors. Scope: local bookworm: resolved (fixed in 1.2.9-1) bullseye: resolved (fixed in 1.2.9-1) forky: resolved (fixed in 1.2.9-1) sid: resolved (fixed in 1.2.9-1) tr

CVE-2010-1455 [MEDIUM] CVE-2010-1455: wireshark - The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0 through 1.2.7 a... The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0 through 1.2.7 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed packet trace file. Scope: local bookworm: resolved (fixed in 1.2.8-1) bullseye: resolved (fixed in 1.2.8-1) forky: resolved (fixed in 1.2.8-1) sid: resolved (fixed in 1.2.8-1) trixie:

CVE-2010-3445 [MEDIUM] CVE-2010-3445: wireshark - Stack consumption vulnerability in the dissect_ber_unknown function in epan/diss... Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.4.x before 1.4.1 and 1.2.x before 1.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a long string in an unknown ASN.1/BER encoded packet, as demonstrated using SNMP. Scope: local

CVE-2010-2285 [LOW] CVE-2010-2285: wireshark - The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.... The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0 through 1.2.8 allows remote attackers to cause a denial of service (NULL pointer dereference) via unknown vectors. Scope: local bookworm: resolved (fixed in 1.2.9-1) bullseye: resolved (fixed in 1.2.9-1) forky: resolved (fixed in 1.2.9-1) sid: resolved (fixed in 1.2.9-1) trixie: resolved (fixed in 1.

CVE-2010-4301 [MEDIUM] CVE-2010-4301: wireshark - epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0... epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted ZCL packet, related to Discover Attributes. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2009-3829 [CRITICAL] CVE-2009-3829: wireshark - Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attack... Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability." Scope: local bookworm: resolved (fixed in 1.2.2-1) bullseye: resolved (fixed in 1.2.2-1) forky: resolved (fixed in 1.2.2-1) sid:

CVE-2009-4376 [CRITICAL] CVE-2009-4376: wireshark - Buffer overflow in the daintree_sna_read function in the Daintree SNA file parse... Buffer overflow in the daintree_sna_read function in the Daintree SNA file parser in Wireshark 1.2.0 through 1.2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet. Scope: local bookworm: resolved (fixed in 1.2.5-1) bullseye: resolved (fixed in 1.2.5-1) forky: resolved (fixed in 1.2.5-1) sid: r

CVE-2009-2563 [HIGH] CVE-2009-2563: wireshark - Unspecified vulnerability in the Infiniband dissector in Wireshark 1.0.6 through... Unspecified vulnerability in the Infiniband dissector in Wireshark 1.0.6 through 1.2.0, when running on unspecified platforms, allows remote attackers to cause a denial of service (crash) via unknown vectors. Scope: local bookworm: resolved (fixed in 1.2.1-1) bullseye: resolved (fixed in 1.2.1-1) forky: resolved (fixed in 1.2.1-1) sid: resolved (fixed in 1.2.1-1) tr

CVE-2009-2560 [MEDIUM] CVE-2009-2560: wireshark - Multiple unspecified vulnerabilities in Wireshark 1.2.0 allow remote attackers t... Multiple unspecified vulnerabilities in Wireshark 1.2.0 allow remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace and is processed by the (1) Bluetooth L2CAP, (2) RADIUS, or (3) MIOP dissector. NOTE: it was later reported that the RADIUS issue also affects 0.10.13 through 1.0.9. Scope: local bookworm:

CVE-2009-0600 [MEDIUM] CVE-2009-0600: wireshark - Wireshark 0.99.6 through 1.0.5 allows user-assisted remote attackers to cause a ... Wireshark 0.99.6 through 1.0.5 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted Tektronix K12 text capture file, as demonstrated by a file with exactly one frame. Scope: local bookworm: resolved (fixed in 1.0.6-1) bullseye: resolved (fixed in 1.0.6-1) forky: resolved (fixed in 1.0.6-1) sid: resolved (fixed in 1.0

CVE-2009-2559 [MEDIUM] CVE-2009-2559: wireshark - Buffer overflow in the IPMI dissector in Wireshark 1.2.0 allows remote attackers... Buffer overflow in the IPMI dissector in Wireshark 1.2.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an array index error. NOTE: some of these details are obtained from third party information. Scope: local bookworm: resolved (fixed in 1.2.1-1) bullseye: resolved (fixed in 1.2.1-1) forky: resolved (fixed in 1.2.1

CVE-2009-2561 [MEDIUM] CVE-2009-2561: wireshark - Unspecified vulnerability in the sFlow dissector in Wireshark 1.2.0 allows remot... Unspecified vulnerability in the sFlow dissector in Wireshark 1.2.0 allows remote attackers to cause a denial of service (CPU and memory consumption) via unspecified vectors. Scope: local bookworm: resolved (fixed in 1.2.1-1) bullseye: resolved (fixed in 1.2.1-1) forky: resolved (fixed in 1.2.1-1) sid: resolved (fixed in 1.2.1-1) trixie: resolved (fixed in 1.2.1-1

CVE-2009-0599 [MEDIUM] CVE-2009-0599: wireshark - Buffer overflow in wiretap/netscreen.c in Wireshark 0.99.7 through 1.0.5 allows ... Buffer overflow in wiretap/netscreen.c in Wireshark 0.99.7 through 1.0.5 allows user-assisted remote attackers to cause a denial of service (application crash) via a malformed NetScreen snoop file. Scope: local bookworm: resolved (fixed in 1.0.6-1) bullseye: resolved (fixed in 1.0.6-1) forky: resolved (fixed in 1.0.6-1) sid: resolved (fixed in 1.0.6-1) trixie: res

CVE-2009-4377 [MEDIUM] CVE-2009-4377: wireshark - The (1) SMB and (2) SMB2 dissectors in Wireshark 0.9.0 through 1.2.4 allow remot... The (1) SMB and (2) SMB2 dissectors in Wireshark 0.9.0 through 1.2.4 allow remote attackers to cause a denial of service (crash) via a crafted packet that triggers a NULL pointer dereference, as demonstrated by fuzz-2009-12-07-11141.pcap. Scope: local bookworm: resolved (fixed in 1.2.5-1) bullseye: resolved (fixed in 1.2.5-1) forky: resolved (fixed in 1.2.5-1) sid

CVE-2009-1267 [MEDIUM] CVE-2009-1267: wireshark - Unspecified vulnerability in the LDAP dissector in Wireshark 0.99.2 through 1.0.... Unspecified vulnerability in the LDAP dissector in Wireshark 0.99.2 through 1.0.6, when running on Windows, allows remote attackers to cause a denial of service (crash) via unknown attack vectors. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2009-1210 [CRITICAL] CVE-2009-1210: wireshark - Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark ... Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier allows remote attackers to execute arbitrary code via a PN-DCP packet with format string specifiers in the station name. NOTE: some of these details are obtained from third party information. Scope: local bookworm: resolved (fixed in 1.0.7-1) bullseye: resolved (fix

CVE-2009-3243 [MEDIUM] CVE-2009-3243: wireshark - Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and 1.2.1, whe... Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and 1.2.1, when running on Windows, allows remote attackers to cause a denial of service (application crash) via unknown vectors related to TLS 1.2 conversations. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2009-3550 [MEDIUM] CVE-2009-3550: wireshark - The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2... The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information. Scope: local bookworm: resolved (fixed in 1.2.3-1) bullseye:

CVE-2009-4378 [MEDIUM] CVE-2009-4378: wireshark - The IPMI dissector in Wireshark 1.2.0 through 1.2.4 on Windows allows remote att... The IPMI dissector in Wireshark 1.2.0 through 1.2.4 on Windows allows remote attackers to cause a denial of service (crash) via a crafted packet, related to "formatting a date/time using strftime." Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved