Ethereal Group Ethereal vulnerabilities
104 known vulnerabilities affecting ethereal_group/ethereal.
Total CVEs
104
CISA KEV
0
Public exploits
9
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH25MEDIUM72
Vulnerabilities
Page 1 of 6
CVE-2004-0176P3MEDIUMCVSS 5.0PoCv0.8.13v0.8.14+22 more2004-05-04
CVE-2004-0176 [MEDIUM] CVE-2004-0176: Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote attackers to cause a denial of s
Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) NetFlow, (2) IGAP, (3) EIGRP, (4) PGM, (5) IrDA, (6) BGP, (7) ISUP, or (8) TCAP dissectors.
nvd
CVE-2005-3243P3HIGHCVSS 7.5PoCv0.9.1v0.9.2+27 more2005-10-27
CVE-2005-3243 [HIGH] CVE-2005-3243: Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute ar
Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector.
nvd
CVE-2005-2367P3HIGHCVSS 7.5PoCv0.9.4v0.9.5+23 more2005-08-10
CVE-2005-2367 [HIGH] CVE-2005-2367: Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, a
Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and gain privileges via a crafted AFP packet.
nvd
CVE-2005-1461P3HIGHCVSS 7.5PoCv0.8v0.8.13+33 more2005-05-05
CVE-2005-1461 [HIGH] CVE-2005-1461: Multiple buffer overflows in the (1) SIP, (2) CMIP, (3) CMP, (4) CMS, (5) CRMF, (6) ESS, (7) OCSP, (
Multiple buffer overflows in the (1) SIP, (2) CMIP, (3) CMP, (4) CMS, (5) CRMF, (6) ESS, (7) OCSP, (8) X.509, (9) ISIS, (10) DISTCC, (11) FCELS, (12) Q.931, (13) NCP, (14) TCAP, (15) ISUP, (16) MEGACO, (17) PKIX1Explitit, (18) PKIX_Qualified, (19) Presentation dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash) and
nvd
CVE-2000-1174P3HIGHCVSS 7.5PoC≤ 0.8.132001-01-09
CVE-2000-1174 [HIGH] CVE-2000-1174: Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers
Multiple buffer overflows in AFS ACL parser for Ethereal 0.8.13 and earlier allows remote attackers to execute arbitrary commands via a packet with a long username.
nvd
CVE-2005-0739P4MEDIUMCVSS 5.0PoC≤ 0.10.92005-05-02
CVE-2005-0739 [MEDIUM] CWE-189 CVE-2005-0739: The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routin
The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the dissect_pdus and pduval_to_str functions.
nvd
CVE-2004-0633P4MEDIUMCVSS 5.0PoCv0.10.3v0.10.42004-12-06
CVE-2004-0633 [MEDIUM] CVE-2004-0633: The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of s
The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow.
nvd
CVE-2005-3184P3CRITICALCVSS 10.0≤ 0.10.122005-10-20
CVE-2005-3184 [CRITICAL] CVE-2005-3184: Buffer overflow vulnerability in the unicode_to_bytes in the Service Location Protocol (srvloc) diss
Buffer overflow vulnerability in the unicode_to_bytes in the Service Location Protocol (srvloc) dissector (packet-srvloc.c) in Ethereal allows remote attackers to execute arbitrary code via a srvloc packet with a modified length value.
nvd
CVE-2005-1470P4MEDIUMCVSS 5.0PoCv0.8v0.8.13+32 more2005-05-05
CVE-2005-1470 [MEDIUM] CVE-2005-1470: Multiple unknown vulnerabilities in the (1) TZSP, (2) MGCP, (3) ISUP, (4) SMB, or (5) Bittorrent dis
Multiple unknown vulnerabilities in the (1) TZSP, (2) MGCP, (3) ISUP, (4) SMB, or (5) Bittorrent dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (segmentation fault) via unknown vectors.
nvd
CVE-2005-3651P3HIGHCVSS 7.5v0.7.7v0.8+37 more2005-12-10
CVE-2005-3651 [HIGH] CVE-2005-3651: Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol diss
Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets.
nvd
CVE-2006-3628P3CRITICALCVSS 10.0v0.10v0.10.0+16 more2006-07-21
CVE-2006-3628 [CRITICAL] CWE-134 CVE-2006-3628: Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote att
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors.
nvd
CVE-2006-3632P3CRITICALCVSS 10.0v0.8.16v0.8.17+39 more2006-07-21
CVE-2006-3632 [CRITICAL] CWE-119 CVE-2006-3632: Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a deni
Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector.
nvd
CVE-2003-0081P3HIGHCVSS 7.5v0.8.18v0.9.0+9 more2003-03-18
CVE-2003-0081 [HIGH] CVE-2003-0081: Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.
Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers.
nvd
CVE-2004-0507P3CRITICALCVSS 10.0v0.10.1v0.10.2+1 more2004-08-18
CVE-2004-0507 [CRITICAL] CVE-2004-0507: Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause
Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
nvd
CVE-2005-0699P3HIGHCVSS 7.5v0.10.3v0.10.4+5 more2005-03-08
CVE-2005-0699 [HIGH] CVE-2005-0699: Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (pac
Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via RADIUS authentication packets with large length values.
nvd
CVE-2000-0333P4MEDIUMCVSS 5.0PoCv0.8.4v0.8.5+1 more1999-05-31
CVE-2000-0333 [MEDIUM] CVE-2000-0333: tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service vi
tcpdump, Ethereal, and other sniffer packages allow remote attackers to cause a denial of service via malformed DNS packets in which a jump offset refers to itself, which causes tcpdump to enter an infinite loop while decompressing the packet.
nvd
CVE-2005-1463P3HIGHCVSS 7.5v0.8v0.8.13+32 more2005-05-05
CVE-2005-1463 [HIGH] CVE-2005-1463: Multiple format string vulnerabilities in the (1) DHCP and (2) ANSI A dissectors in Ethereal before
Multiple format string vulnerabilities in the (1) DHCP and (2) ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.
nvd
CVE-2005-0084P3HIGHCVSS 7.5v0.8v0.8.13+36 more2005-05-02
CVE-2005-0084 [HIGH] CVE-2005-0084: Buffer overflow in the X11 dissector in Ethereal 0.8.10 through 0.10.8 allows remote attackers to ex
Buffer overflow in the X11 dissector in Ethereal 0.8.10 through 0.10.8 allows remote attackers to execute arbitrary code via a crafted packet.
nvd
CVE-2005-1462P3HIGHCVSS 7.5v0.8v0.8.13+32 more2005-05-05
CVE-2005-1462 [HIGH] CWE-119 CVE-2005-1462: Double free vulnerability in the ICEP dissector in Ethereal before 0.10.11 may allow remote attacker
Double free vulnerability in the ICEP dissector in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.
nvd
CVE-2003-0927P4HIGHCVSS 7.5v0.9v0.9.1+14 more2003-12-01
CVE-2003-0927 [HIGH] CVE-2003-0927: Heap-based buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial
Heap-based buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SOCKS dissector.
nvd
1 / 6Next →