This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Name cpe:/a:wireshark:wireshark:0.10.14
Detail
Vendor Wireshark First view 2006-07-21
Product Wireshark Last view 2010-08-13
Version 0.10.14 Type Application
Edition  
Language  
Update  
 
CPE Product cpe:/a:wireshark:wireshark

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
10 2010-08-13 CVE-2010-2995 Network Low None Requ...
10 2010-08-13 CVE-2010-2994 Network Low None Requ...
8.3 2010-06-15 CVE-2010-2287 Adjacent ... Low None Requ...
3.3 2010-06-15 CVE-2010-2286 Adjacent ... Low None Requ...
3.3 2010-06-15 CVE-2010-2285 Adjacent ... Low None Requ...
Hide | Show 13 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
8.3 2010-06-15 CVE-2010-2284 Adjacent ... Low None Requ...
9.3 2009-10-30 CVE-2009-3829 Network Medium None Requ...
4.3 2009-10-30 CVE-2009-3550 Network Medium None Requ...
10 2009-04-21 CVE-2009-1266 Network Low None Requ...
10 2009-04-01 CVE-2009-1210 Network Low None Requ...
5 2008-12-01 CVE-2008-5285 Network Low None Requ...
3.3 2008-09-04 CVE-2008-3933 Adjacent ... Low None Requ...
5 2008-09-04 CVE-2008-3932 Network Low None Requ...
5 2007-11-23 CVE-2007-6117 Network Low None Requ...
4.3 2007-11-23 CVE-2007-6113 Network Medium None Requ...
5 2007-06-25 CVE-2007-3390 Network Low None Requ...
4.3 2007-02-02 CVE-2007-0457 Network Medium None Requ...
5 2006-07-21 CVE-2006-3627 Network Low None Requ...

CWE : Common Weakness Enumeration

%idName
25% (3)CWE-399Resource Management Errors
25% (3)CWE-189Numeric Errors
25% (3)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
16% (2)CWE-20Improper Input Validation
8% (1)CWE-134Uncontrolled Format String

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idName
CAPEC-3Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7Blind SQL Injection
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
Hide | Show 20 More...
idName
CAPEC-13Subverting Environment Variable Values
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-18Embedding Scripts in Nonscript Elements
CAPEC-22Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-28Fuzzing
CAPEC-31Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32Embedding Scripts in HTTP Query Strings
CAPEC-42MIME Conversion
CAPEC-43Exploiting Multiple Input Interpretation Layers
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-52Embedding NULL Bytes
CAPEC-53Postfix, Null Terminate, and Backslash
CAPEC-63Simple Script Injection
CAPEC-64Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-66SQL Injection
CAPEC-67String Format Overflow in syslog()
CAPEC-71Using Unicode Encoding to Bypass Validation Logic

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:11307Unspecified vulnerability in the GSM BSSMAP dissector in Wireshark (aka Ether...
oval:org.mitre.oval:def:11003Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly...
oval:org.mitre.oval:def:10865Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, a...
oval:org.mitre.oval:def:9841Integer signedness error in the DNP3 dissector in Wireshark (formerly Etherea...
oval:org.mitre.oval:def:11508Unspecified vulnerability in the HTTP dissector for Wireshark (formerly Ether...
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:11273Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a...
oval:org.mitre.oval:def:9620Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause...
oval:org.mitre.oval:def:11351Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of serv...
oval:org.mitre.oval:def:9526Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wiresha...
oval:org.mitre.oval:def:5976Wireshark PROFINET/DCP (PN-DCP) dissector Denial of Service Vulnerability
oval:org.mitre.oval:def:6005Wireshark DoS Vulnerability due to the DCERPC/NT dissector
oval:org.mitre.oval:def:10103The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through ...
oval:org.mitre.oval:def:9945Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote att...
oval:org.mitre.oval:def:7586DSA-1942 wireshark -- several vulnerabilities
oval:org.mitre.oval:def:5979Wireshark Integer overflow vulnerability in wiretap/erf.c
oval:org.mitre.oval:def:13282DSA-1942-1 wireshark -- several
oval:org.mitre.oval:def:11888Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities
oval:org.mitre.oval:def:11488Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities
oval:org.mitre.oval:def:11792Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities
oval:org.mitre.oval:def:13474DSA-2066-1 wireshark -- several
oval:org.mitre.oval:def:11836Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities
oval:org.mitre.oval:def:10970DSA-2066 wireshark -- several vulnerabilities
oval:org.mitre.oval:def:12047Stack-based buffer overflow in the ASN.1 BER dissector in Wireshark
oval:org.mitre.oval:def:22021RHSA-2010:0625: wireshark security update (Moderate)
oval:org.mitre.oval:def:12408DSA-2101-1 wireshark -- several

Open Source Vulnerability Database (OSVDB)

idDescription
67191Wireshark SigComp Universal Decompressor Virtual Machine sigcomp-udvm.c Off-b...
65375Wireshark SigComp Universal Decompressor Virtual Machine Overflow
65374Wireshark SigComp Universal Decompressor Virtual Machine Infinite Loop DoS
65373Wireshark SMB PIPE Dissector NULL Dereference DoS
65372Wireshark ASN.1 BER Dissector Overflow
Hide | Show 12 More...
idDescription
59478Wireshark wiretap/erf.c Unsigned Integer Wrap ERF File Handling Overflow
59460Wireshark DCERPC/NT Dissector Unspecified DoS
53903Wireshark Unspecified Issue
52996Wireshark PN-DCP Dissector Station Name Handling Format String
50069Wireshark SMTP Dissector Packet Handling Infinite Loop DoS
47933Wireshark zlib-compressed Packet Data Uncompression DoS
47932Wireshark NCP Dissector Unspecified Infinite Loop DoS
40456Wireshark DNP3 Dissector Malformed Packet Handling Remote Infinite Loop DoS
40453Wireshark HTTP Dissector Chunked Message Handling Unspecified Remote Issue
37642Wireshark Crafted iSeries Capture File Handling Remote DoS
33074Wireshark IEEE 802.11 Dissector Unspecified DoS
27360Wireshark GSM BSSMAP Dissector Unspecified DoS

Milw0rm Exploits

idDescription
2009-03-30Wireshark <= 1.0.6 PN-DCP Format String Exploit PoC
2007-08-31Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-02-12Name : Gentoo Security Advisory GLSA 201110-02 (wireshark)
File : nvt/glsa_201110_02.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:0313 centos3 i386
File : nvt/gb_CESA-2009_0313_wireshark_centos3_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:0313 centos4 i386
File : nvt/gb_CESA-2009_0313_wireshark_centos4_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2010:0360 centos5 i386
File : nvt/gb_CESA-2010_0360_wireshark_centos5_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:1100 centos3 i386
File : nvt/gb_CESA-2009_1100_wireshark_centos3_i386.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for wireshark CESA-2009:1100 centos5 i386
File : nvt/gb_CESA-2009_1100_wireshark_centos5_i386.nasl
2011-06-20Name : Fedora Update for wireshark FEDORA-2011-7858
File : nvt/gb_fedora_2011_7858_wireshark_fc13.nasl
2011-05-05Name : Fedora Update for wireshark FEDORA-2011-5529
File : nvt/gb_fedora_2011_5529_wireshark_fc13.nasl
2011-03-15Name : Fedora Update for wireshark FEDORA-2011-2620
File : nvt/gb_fedora_2011_2620_wireshark_fc13.nasl
2011-02-04Name : Fedora Update for wireshark FEDORA-2011-0460
File : nvt/gb_fedora_2011_0460_wireshark_fc13.nasl
2011-01-14Name : Fedora Update for wireshark FEDORA-2011-0167
File : nvt/gb_fedora_2011_0167_wireshark_fc13.nasl
2010-10-10Name : Debian Security Advisory DSA 2101-1 (wireshark)
File : nvt/deb_2101_1.nasl
2010-09-07Name : Fedora Update for wireshark FEDORA-2010-13416
File : nvt/gb_fedora_2010_13416_wireshark_fc13.nasl
2010-09-07Name : Fedora Update for wireshark FEDORA-2010-13427
File : nvt/gb_fedora_2010_13427_wireshark_fc12.nasl
2010-08-30Name : CentOS Update for wireshark CESA-2010:0625 centos4 i386
File : nvt/gb_CESA-2010_0625_wireshark_centos4_i386.nasl
2010-08-19Name : Wireshark Multiple Vulnerabilities (win)
File : nvt/gb_wireshark_mult_vuln_win.nasl
2010-08-19Name : Wireshark Stack-based Buffer Overflow Vulnerability (Win)
File : nvt/gb_wireshark_dissector_bof_vuln_win.nasl
2010-08-13Name : RedHat Update for wireshark RHSA-2010:0625-01
File : nvt/gb_RHSA-2010_0625-01_wireshark.nasl
2010-08-06Name : Mandriva Update for wireshark MDVSA-2010:144 (wireshark)
File : nvt/gb_mandriva_MDVSA_2010_144.nasl
2010-07-06Name : Debian Security Advisory DSA 2066-1 (wireshark)
File : nvt/deb_2066_1.nasl
2010-06-22Name : Wireshark ASN.1 BER Dissector Buffer Overflow Vulnerability (Windows)
File : nvt/secpod_wireshark_asn_ber_dissector_bof_vuln_win.nasl
2010-06-22Name : Wireshark SigComp Universal Decompressor Virtual Machine dissector BOF Vulner...
File : nvt/secpod_wireshark_sigcomp_dissector_bof_vuln_win.nasl
2010-06-22Name : Wireshark SigComp Universal Decompressor Virtual Machine dissector DOS Vulner...
File : nvt/secpod_wireshark_sigcomp_dissector_dos_vuln_win.nasl
2010-06-22Name : Wireshark SMB PIPE Dissector Denial of Service Vulnerability (Windows)
File : nvt/secpod_wireshark_smb_pipe_dissector_dos_vuln_win.nasl
2010-06-11Name : Mandriva Update for wireshark MDVSA-2010:113 (wireshark)
File : nvt/gb_mandriva_MDVSA_2010_113.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0066.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0890.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0360.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-0313.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0625.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-1100.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0058.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0059.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing a security update.
File : oraclelinux_ELSA-2006-0726.nasl - Type : ACT_GATHER_INFO
2013-06-28Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2007-0709.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20081001_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100420_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090304_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20071107_wireshark_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20071115_wireshark_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100811_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090615_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20080121_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2011-10-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201110-02.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_1_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2011-04-07Name : The remote SuSE 11 host is missing a security update.
File : suse_11_wireshark-110331.nasl - Type : ACT_GATHER_INFO
2011-02-03Name : The remote Fedora host is missing a security update.
File : fedora_2011-0460.nasl - Type : ACT_GATHER_INFO
2011-01-14Name : The remote Fedora host is missing a security update.
File : fedora_2011-0167.nasl - Type : ACT_GATHER_INFO