This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:wireshark:wireshark:0.10.3
Detail
VendorWiresharkFirst view 2007-02-02
ProductWiresharkLast view2011-03-28
Version0.10.3TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:wireshark:wireshark

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
9.32011-03-28CVE-2011-0024NetworkMediumNone Requ...
4.32011-03-02CVE-2011-1143NetworkMediumNone Requ...
9.32010-08-26CVE-2010-3133NetworkMediumNone Requ...
9.32009-10-30CVE-2009-3829NetworkMediumNone Requ...
4.32009-10-30CVE-2009-3550NetworkMediumNone Requ...
Hide | Show 11 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
102009-04-21CVE-2009-1266NetworkLowNone Requ...
102009-04-01CVE-2009-1210NetworkLowNone Requ...
52008-12-01CVE-2008-5285NetworkLowNone Requ...
52008-10-22CVE-2008-4685NetworkLowNone Requ...
3.32008-09-04CVE-2008-3933Adjacent ...LowNone Requ...
52008-09-04CVE-2008-3932NetworkLowNone Requ...
4.32007-11-23CVE-2007-6113NetworkMediumNone Requ...
52007-06-25CVE-2007-3393NetworkLowNone Requ...
52007-06-25CVE-2007-3392NetworkLowNone Requ...
52007-06-25CVE-2007-3390NetworkLowNone Requ...
4.32007-02-02CVE-2007-0457NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
25% (2)CWE-399Resource Management Errors
25% (2)CWE-189Numeric Errors
25% (2)CWE-20Improper Input Validation
12% (1)CWE-134Uncontrolled Format String
12% (1)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idName
CAPEC-3Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7Blind SQL Injection
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
Hide | Show 20 More...
idName
CAPEC-13Subverting Environment Variable Values
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-18Embedding Scripts in Nonscript Elements
CAPEC-22Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-28Fuzzing
CAPEC-31Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32Embedding Scripts in HTTP Query Strings
CAPEC-42MIME Conversion
CAPEC-43Exploiting Multiple Input Interpretation Layers
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-52Embedding NULL Bytes
CAPEC-53Postfix, Null Terminate, and Backslash
CAPEC-63Simple Script Injection
CAPEC-64Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-66SQL Injection
CAPEC-67String Format Overflow in syslog()
CAPEC-71Using Unicode Encoding to Bypass Validation Logic

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:26393Heap based buffer overflow vulnerability in Wireshark before 1.2
oval:org.mitre.oval:def:10865Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, a...
oval:org.mitre.oval:def:9620Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause...
oval:org.mitre.oval:def:26105Denial of service vulnerability in Wireshark via crafted zlib-compressed data
oval:org.mitre.oval:def:6005Wireshark DoS Vulnerability due to the DCERPC/NT dissector
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:10103The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through ...
oval:org.mitre.oval:def:9526Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wiresha...
oval:org.mitre.oval:def:5976Wireshark PROFINET/DCP (PN-DCP) dissector Denial of Service Vulnerability
oval:org.mitre.oval:def:10663Wireshark before 0.99.6 allows remote attackers to cause a denial of service ...
oval:org.mitre.oval:def:11498Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2...
oval:org.mitre.oval:def:11003Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly...
oval:org.mitre.oval:def:11351Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of serv...
oval:org.mitre.oval:def:26525Denial of service vulnerability in Wireshark via long SMTP request
oval:org.mitre.oval:def:21771RHSA-2011:0370: wireshark security update (Moderate)
oval:org.mitre.oval:def:16209epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark before...
oval:org.mitre.oval:def:23150ELSA-2011:0370: wireshark security update (Moderate)
oval:org.mitre.oval:def:18616DSA-1322-1 wireshark
oval:org.mitre.oval:def:11010Off-by-one error in the DHCP/BOOTP dissector in Wireshark before 0.99.6 allow...
oval:org.mitre.oval:def:21733ELSA-2007:0710: wireshark security update (Low)
oval:org.mitre.oval:def:9945Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote att...
oval:org.mitre.oval:def:7586DSA-1942 wireshark -- several vulnerabilities
oval:org.mitre.oval:def:5979Wireshark Integer overflow vulnerability in wiretap/erf.c
oval:org.mitre.oval:def:13282DSA-1942-1 wireshark -- several
oval:org.mitre.oval:def:11273Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a...
oval:org.mitre.oval:def:26171Denial of service vulnerability in Wireshark via crafted NCP packet

Open Source Vulnerability Database (OSVDB)

idDescription
73403Wireshark wiretap/pcapng.c Crafted Capture File Overflow DoS
71548Wireshark NTLMSSP Dissector PCAP File Handling DoS
67504Wireshark Path Subversion Arbitrary DLL Injection Code Execution
59478Wireshark wiretap/erf.c Unsigned Integer Wrap ERF File Handling Overflow
59460Wireshark DCERPC/NT Dissector Unspecified DoS
Hide | Show 11 More...
idDescription
53903Wireshark Unspecified Issue
52996Wireshark PN-DCP Dissector Station Name Handling Format String
50069Wireshark SMTP Dissector Packet Handling Infinite Loop DoS
49345Wireshark Q.931 Dissector packet-q931.c dissect_q931_cause_ie Function Use-af...
47933Wireshark zlib-compressed Packet Data Uncompression DoS
47932Wireshark NCP Dissector Unspecified Infinite Loop DoS
40456Wireshark DNP3 Dissector Malformed Packet Handling Remote Infinite Loop DoS
37642Wireshark Crafted iSeries Capture File Handling Remote DoS
37640Wireshark Malformed SSL / MMS Packet Handling DoS
37639Wireshark DHCP/BOOTP Dissector Crafted DHCP-over-DOCSIS Packet Remote DoS
33074Wireshark IEEE 802.11 Dissector Unspecified DoS

Milw0rm Exploits

idDescription
2009-03-30Wireshark <= 1.0.6 PN-DCP Format String Exploit PoC
2007-08-31Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-07-30Name : CentOS Update for wireshark CESA-2011:0370 centos5 x86_64
File : nvt/gb_CESA-2011_0370_wireshark_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for wireshark CESA-2012:0509 centos6
File : nvt/gb_CESA-2012_0509_wireshark_centos6.nasl
2012-07-09Name : RedHat Update for wireshark RHSA-2012:0509-01
File : nvt/gb_RHSA-2012_0509-01_wireshark.nasl
2012-06-27Name : Wireshark Denial of Service Vulnerability-02 March 11 (Mac OS X)
File : nvt/gb_wireshark_dos_vuln02_mar11_macosx.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201110-02 (wireshark)
File : nvt/glsa_201110_02.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for wireshark CESA-2009:0313 centos3 i386
File : nvt/gb_CESA-2009_0313_wireshark_centos3_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:0313 centos4 i386
File : nvt/gb_CESA-2009_0313_wireshark_centos4_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2011:0370 centos5 i386
File : nvt/gb_CESA-2011_0370_wireshark_centos5_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2010:0360 centos5 i386
File : nvt/gb_CESA-2010_0360_wireshark_centos5_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:1100 centos3 i386
File : nvt/gb_CESA-2009_1100_wireshark_centos3_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:1100 centos5 i386
File : nvt/gb_CESA-2009_1100_wireshark_centos5_i386.nasl
2011-03-25Name : CentOS Update for wireshark CESA-2011:0370 centos4 i386
File : nvt/gb_CESA-2011_0370_wireshark_centos4_i386.nasl
2011-03-24Name : RedHat Update for wireshark RHSA-2011:0370-01
File : nvt/gb_RHSA-2011_0370-01_wireshark.nasl
2011-03-15Name : Fedora Update for wireshark FEDORA-2011-2620
File : nvt/gb_fedora_2011_2620_wireshark_fc13.nasl
2011-03-15Name : Fedora Update for wireshark FEDORA-2011-2632
File : nvt/gb_fedora_2011_2632_wireshark_fc14.nasl
2011-03-09Name : Wireshark Denial of Service Vulnerability March-11 (Windows)
File : nvt/gb_wireshark_dos_vuln_mar11_win02.nasl
2010-09-01Name : Wireshark File Opening Insecure Library Loading Vulnerability (Windows)
File : nvt/secpod_wireshark_insecure_lib_load_vuln_win.nasl
2010-04-29Name : CentOS Update for wireshark CESA-2010:0360 centos3 i386
File : nvt/gb_CESA-2010_0360_wireshark_centos3_i386.nasl
2010-04-29Name : CentOS Update for wireshark CESA-2010:0360 centos4 i386
File : nvt/gb_CESA-2010_0360_wireshark_centos4_i386.nasl
2010-04-29Name : RedHat Update for wireshark RHSA-2010:0360-01
File : nvt/gb_RHSA-2010_0360-01_wireshark.nasl
2009-12-14Name : SLES11: Security update for wireshark
File : nvt/sles11_wireshark1.nasl
2009-12-10Name : Fedora Core 10 FEDORA-2009-7998 (wireshark)
File : nvt/fcore_2009_7998.nasl
2009-12-10Name : Mandriva Security Advisory MDVSA-2009:292-1 (wireshark)
File : nvt/mdksa_2009_292_1.nasl
2009-12-10Name : Debian Security Advisory DSA 1942-1 (wireshark)
File : nvt/deb_1942_1.nasl
2009-12-03Name : SLES10: Security update for ethereal
File : nvt/sles10_ethereal4.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_wireshark-110411.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_wireshark-110411.nasl - Type : ACT_GATHER_INFO
2013-09-04Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2012-71.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0066.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0370.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0890.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0509.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0360.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-0313.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-1100.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0058.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0059.nasl - Type : ACT_GATHER_INFO
2013-06-29Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2007-0709.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20081001_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20110321_wireshark_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100420_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20120423_wireshark_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090304_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20071107_wireshark_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20071115_wireshark_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090615_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20080121_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-04-25Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2012-0509.nasl - Type : ACT_GATHER_INFO
2012-04-24Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-0509.nasl - Type : ACT_GATHER_INFO
2011-10-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201110-02.nasl - Type : ACT_GATHER_INFO