This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:wireshark:wireshark:0.10.13
Detail
VendorWiresharkFirst view 2006-07-21
ProductWiresharkLast view 2010-08-13
Version0.10.13TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:wireshark:wireshark

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
10 2010-08-13 CVE-2010-2995 Network Low None Requ...
10 2010-08-13 CVE-2010-2994 Network Low None Requ...
8.3 2010-06-15 CVE-2010-2287 Adjacent ... Low None Requ...
3.3 2010-06-15 CVE-2010-2286 Adjacent ... Low None Requ...
3.3 2010-06-15 CVE-2010-2285 Adjacent ... Low None Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
8.3 2010-06-15 CVE-2010-2284 Adjacent ... Low None Requ...
9.3 2009-10-30 CVE-2009-3829 Network Medium None Requ...
4.3 2009-10-30 CVE-2009-3550 Network Medium None Requ...
10 2009-04-21 CVE-2009-1266 Network Low None Requ...
10 2009-04-01 CVE-2009-1210 Network Low None Requ...
5 2008-12-01 CVE-2008-5285 Network Low None Requ...
5 2008-09-04 CVE-2008-3932 Network Low None Requ...
4.7 2008-02-28 CVE-2008-1072 Local Medium None Requ...
4.3 2008-02-28 CVE-2008-1071 Network Medium None Requ...
5 2008-02-28 CVE-2008-1070 Network Low None Requ...
4.3 2007-11-23 CVE-2007-6113 Network Medium None Requ...
5 2007-06-25 CVE-2007-3390 Network Low None Requ...
5 2006-10-27 CVE-2006-5595 Network Low None Requ...
5 2006-10-27 CVE-2006-5469 Network Low None Requ...
5 2006-10-27 CVE-2006-4805 Network Low None Requ...
5 2006-10-27 CVE-2006-4574 Network Low None Requ...
5.4 2006-08-24 CVE-2006-4333 Network High None Requ...
5 2006-08-24 CVE-2006-4332 Network Low None Requ...
10 2006-07-21 CVE-2006-3628 Network Low None Requ...

CWE : Common Weakness Enumeration

%idName
35% (5)CWE-399Resource Management Errors
21% (3)CWE-189Numeric Errors
21% (3)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (2)CWE-134Uncontrolled Format String
7% (1)CWE-20Improper Input Validation

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idName
CAPEC-3Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7Blind SQL Injection
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
Hide | Show 20 More...
idName
CAPEC-13Subverting Environment Variable Values
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-18Embedding Scripts in Nonscript Elements
CAPEC-22Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-28Fuzzing
CAPEC-31Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32Embedding Scripts in HTTP Query Strings
CAPEC-42MIME Conversion
CAPEC-43Exploiting Multiple Input Interpretation Layers
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-52Embedding NULL Bytes
CAPEC-53Postfix, Null Terminate, and Backslash
CAPEC-63Simple Script Injection
CAPEC-64Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-66SQL Injection
CAPEC-67String Format Overflow in syslog()
CAPEC-71Using Unicode Encoding to Bypass Validation Logic

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:11307Unspecified vulnerability in the GSM BSSMAP dissector in Wireshark (aka Ether...
oval:org.mitre.oval:def:9175Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to ...
oval:org.mitre.oval:def:11801The SSCOP dissector in Wireshark (formerly Ethereal) before 0.99.3 allows rem...
oval:org.mitre.oval:def:9740Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ether...
oval:org.mitre.oval:def:10199epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wiresh...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:9537Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ether...
oval:org.mitre.oval:def:14787AirPcap support vulnerability in Wireshark 0.99.3
oval:org.mitre.oval:def:10865Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, a...
oval:org.mitre.oval:def:9841Integer signedness error in the DNP3 dissector in Wireshark (formerly Etherea...
oval:org.mitre.oval:def:14995SCTP dissector vulnerability in Wireshark 0.99.5 through 0.99.7
oval:org.mitre.oval:def:11378The SCTP dissector in Wireshark (formerly Ethereal) 0.99.5 through 0.99.7 all...
oval:org.mitre.oval:def:14784SNMP dissector vulnerability in Wireshark 0.99.6 through 0.99.7
oval:org.mitre.oval:def:11633The SNMP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.7 all...
oval:org.mitre.oval:def:10188The TFTP dissector in Wireshark (formerly Ethereal) 0.6.0 through 0.99.7, whe...
oval:org.mitre.oval:def:11273Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a...
oval:org.mitre.oval:def:11351Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of serv...
oval:org.mitre.oval:def:9526Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wiresha...
oval:org.mitre.oval:def:5976Wireshark PROFINET/DCP (PN-DCP) dissector Denial of Service Vulnerability
oval:org.mitre.oval:def:6005Wireshark DoS Vulnerability due to the DCERPC/NT dissector
oval:org.mitre.oval:def:10103The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through ...
oval:org.mitre.oval:def:9945Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote att...
oval:org.mitre.oval:def:7586DSA-1942 wireshark -- several vulnerabilities
oval:org.mitre.oval:def:5979Wireshark Integer overflow vulnerability in wiretap/erf.c
oval:org.mitre.oval:def:13282DSA-1942-1 wireshark -- several
oval:org.mitre.oval:def:11888Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
67191Wireshark SigComp Universal Decompressor Virtual Machine sigcomp-udvm.c Off-b...
65375Wireshark SigComp Universal Decompressor Virtual Machine Overflow
65374Wireshark SigComp Universal Decompressor Virtual Machine Infinite Loop DoS
65373Wireshark SMB PIPE Dissector NULL Dereference DoS
65372Wireshark ASN.1 BER Dissector Overflow
Hide | Show 20 More...
idDescription
59478Wireshark wiretap/erf.c Unsigned Integer Wrap ERF File Handling Overflow
59460Wireshark DCERPC/NT Dissector Unspecified DoS
53903Wireshark Unspecified Issue
52996Wireshark PN-DCP Dissector Station Name Handling Format String
50069Wireshark SMTP Dissector Packet Handling Infinite Loop DoS
47932Wireshark NCP Dissector Unspecified Infinite Loop DoS
42577Wireshark TFTP Dissector Malformed Packet Handling Remote DoS
42576Wireshark SNMP Dissector Malformed Packet Handling Remote DoS
42575Wireshark SCTP Dissector Malformed Packet Handling Remote DoS
40456Wireshark DNP3 Dissector Malformed Packet Handling Remote Infinite Loop DoS
37642Wireshark Crafted iSeries Capture File Handling Remote DoS
30073Wireshark AirPcap Support WEP Key Processing DoS
30072Wireshark MIME Multipart Dissector Off-by-one
30071Wireshark WBXML Dissector Unspecified DoS
30070Wireshark XOT Dissector Unspecified Resource Consumption DoS
28199Wireshark Q.2931 Dissector Crafted Packet Remote DoS
28198Wireshark DHCP Dissector w/ Glib Unspecified DoS
27369Wireshark NTP Dissector Format String Flaw
27364Wireshark XML Dissector Format String Flaw
27363Wireshark MQ Dissector Format String Flaw

Milw0rm Exploits

idDescription
2009-03-30Wireshark <= 1.0.6 PN-DCP Format String Exploit PoC
2007-08-31Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-02-12Name : Gentoo Security Advisory GLSA 201110-02 (wireshark)
File : nvt/glsa_201110_02.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:0313 centos3 i386
File : nvt/gb_CESA-2009_0313_wireshark_centos3_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:0313 centos4 i386
File : nvt/gb_CESA-2009_0313_wireshark_centos4_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2010:0360 centos5 i386
File : nvt/gb_CESA-2010_0360_wireshark_centos5_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:1100 centos3 i386
File : nvt/gb_CESA-2009_1100_wireshark_centos3_i386.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for wireshark CESA-2009:1100 centos5 i386
File : nvt/gb_CESA-2009_1100_wireshark_centos5_i386.nasl
2011-06-20Name : Fedora Update for wireshark FEDORA-2011-7858
File : nvt/gb_fedora_2011_7858_wireshark_fc13.nasl
2011-05-05Name : Fedora Update for wireshark FEDORA-2011-5529
File : nvt/gb_fedora_2011_5529_wireshark_fc13.nasl
2011-03-15Name : Fedora Update for wireshark FEDORA-2011-2620
File : nvt/gb_fedora_2011_2620_wireshark_fc13.nasl
2011-02-04Name : Fedora Update for wireshark FEDORA-2011-0460
File : nvt/gb_fedora_2011_0460_wireshark_fc13.nasl
2011-01-14Name : Fedora Update for wireshark FEDORA-2011-0167
File : nvt/gb_fedora_2011_0167_wireshark_fc13.nasl
2010-10-10Name : Debian Security Advisory DSA 2101-1 (wireshark)
File : nvt/deb_2101_1.nasl
2010-09-07Name : Fedora Update for wireshark FEDORA-2010-13416
File : nvt/gb_fedora_2010_13416_wireshark_fc13.nasl
2010-09-07Name : Fedora Update for wireshark FEDORA-2010-13427
File : nvt/gb_fedora_2010_13427_wireshark_fc12.nasl
2010-08-30Name : CentOS Update for wireshark CESA-2010:0625 centos4 i386
File : nvt/gb_CESA-2010_0625_wireshark_centos4_i386.nasl
2010-08-19Name : Wireshark Multiple Vulnerabilities (win)
File : nvt/gb_wireshark_mult_vuln_win.nasl
2010-08-19Name : Wireshark Stack-based Buffer Overflow Vulnerability (Win)
File : nvt/gb_wireshark_dissector_bof_vuln_win.nasl
2010-08-13Name : RedHat Update for wireshark RHSA-2010:0625-01
File : nvt/gb_RHSA-2010_0625-01_wireshark.nasl
2010-08-06Name : Mandriva Update for wireshark MDVSA-2010:144 (wireshark)
File : nvt/gb_mandriva_MDVSA_2010_144.nasl
2010-07-06Name : Debian Security Advisory DSA 2066-1 (wireshark)
File : nvt/deb_2066_1.nasl
2010-06-22Name : Wireshark ASN.1 BER Dissector Buffer Overflow Vulnerability (Windows)
File : nvt/secpod_wireshark_asn_ber_dissector_bof_vuln_win.nasl
2010-06-22Name : Wireshark SigComp Universal Decompressor Virtual Machine dissector BOF Vulner...
File : nvt/secpod_wireshark_sigcomp_dissector_bof_vuln_win.nasl
2010-06-22Name : Wireshark SigComp Universal Decompressor Virtual Machine dissector DOS Vulner...
File : nvt/secpod_wireshark_sigcomp_dissector_dos_vuln_win.nasl
2010-06-22Name : Wireshark SMB PIPE Dissector Denial of Service Vulnerability (Windows)
File : nvt/secpod_wireshark_smb_pipe_dissector_dos_vuln_win.nasl
2010-06-11Name : Mandriva Update for wireshark MDVSA-2010:113 (wireshark)
File : nvt/gb_mandriva_MDVSA_2010_113.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0890.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0360.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-0313.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0625.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-1100.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0058.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0059.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2006-0726.nasl - Type : ACT_GATHER_INFO
2013-06-28Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2007-0709.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20081001_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100420_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090304_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20071107_wireshark_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20071115_wireshark_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100811_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090615_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20080121_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2011-10-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201110-02.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_1_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2011-04-07Name : The remote SuSE 11 host is missing a security update.
File : suse_11_wireshark-110331.nasl - Type : ACT_GATHER_INFO
2011-02-03Name : The remote Fedora host is missing a security update.
File : fedora_2011-0460.nasl - Type : ACT_GATHER_INFO
2011-01-14Name : The remote Fedora host is missing a security update.
File : fedora_2011-0167.nasl - Type : ACT_GATHER_INFO
2010-10-11Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_ethereal-6628.nasl - Type : ACT_GATHER_INFO