This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:wireshark:wireshark:0.10.7
Detail
VendorWiresharkFirst view 2007-02-02
ProductWiresharkLast view 2010-06-15
Version0.10.7TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:wireshark:wireshark

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
3.3 2010-06-15 CVE-2010-2286 Adjacent ... Low None Requ...
9.3 2009-10-30 CVE-2009-3829 Network Medium None Requ...
4.3 2009-10-30 CVE-2009-3550 Network Medium None Requ...
10 2009-04-21 CVE-2009-1266 Network Low None Requ...
10 2009-04-01 CVE-2009-1210 Network Low None Requ...
Hide | Show 7 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
5 2008-12-01 CVE-2008-5285 Network Low None Requ...
5 2008-10-22 CVE-2008-4685 Network Low None Requ...
3.3 2008-09-04 CVE-2008-3933 Adjacent ... Low None Requ...
5 2008-09-04 CVE-2008-3932 Network Low None Requ...
4.3 2007-11-23 CVE-2007-6113 Network Medium None Requ...
5 2007-06-25 CVE-2007-3390 Network Low None Requ...
4.3 2007-02-02 CVE-2007-0457 Network Medium None Requ...

CWE : Common Weakness Enumeration

%idName
37% (3)CWE-399Resource Management Errors
25% (2)CWE-189Numeric Errors
25% (2)CWE-20Improper Input Validation
12% (1)CWE-134Uncontrolled Format String

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idName
CAPEC-3Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7Blind SQL Injection
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
Hide | Show 20 More...
idName
CAPEC-13Subverting Environment Variable Values
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-18Embedding Scripts in Nonscript Elements
CAPEC-22Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-28Fuzzing
CAPEC-31Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32Embedding Scripts in HTTP Query Strings
CAPEC-42MIME Conversion
CAPEC-43Exploiting Multiple Input Interpretation Layers
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-52Embedding NULL Bytes
CAPEC-53Postfix, Null Terminate, and Backslash
CAPEC-63Simple Script Injection
CAPEC-64Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-66SQL Injection
CAPEC-67String Format Overflow in syslog()
CAPEC-71Using Unicode Encoding to Bypass Validation Logic

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:11003Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly...
oval:org.mitre.oval:def:10865Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, a...
oval:org.mitre.oval:def:9841Integer signedness error in the DNP3 dissector in Wireshark (formerly Etherea...
oval:org.mitre.oval:def:11273Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a...
oval:org.mitre.oval:def:9620Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause...
Hide | Show 13 More...
idName
oval:org.mitre.oval:def:8237DSA-1673 wireshark -- several vulnerabilities
oval:org.mitre.oval:def:20196DSA-1673-1 wireshark - several vulnerabilities
oval:org.mitre.oval:def:10788Use-after-free vulnerability in the dissect_q931_cause_ie function in packet-...
oval:org.mitre.oval:def:11351Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of serv...
oval:org.mitre.oval:def:9526Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wiresha...
oval:org.mitre.oval:def:5976Wireshark PROFINET/DCP (PN-DCP) dissector Denial of Service Vulnerability
oval:org.mitre.oval:def:6005Wireshark DoS Vulnerability due to the DCERPC/NT dissector
oval:org.mitre.oval:def:10103The DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through ...
oval:org.mitre.oval:def:9945Integer overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote att...
oval:org.mitre.oval:def:7586DSA-1942 wireshark -- several vulnerabilities
oval:org.mitre.oval:def:5979Wireshark Integer overflow vulnerability in wiretap/erf.c
oval:org.mitre.oval:def:13282DSA-1942-1 wireshark -- several
oval:org.mitre.oval:def:11792Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities

Open Source Vulnerability Database (OSVDB)

idDescription
65374Wireshark SigComp Universal Decompressor Virtual Machine Infinite Loop DoS
59478Wireshark wiretap/erf.c Unsigned Integer Wrap ERF File Handling Overflow
59460Wireshark DCERPC/NT Dissector Unspecified DoS
53903Wireshark Unspecified Issue
52996Wireshark PN-DCP Dissector Station Name Handling Format String
Hide | Show 7 More...
idDescription
50069Wireshark SMTP Dissector Packet Handling Infinite Loop DoS
49345Wireshark Q.931 Dissector packet-q931.c dissect_q931_cause_ie Function Use-af...
47933Wireshark zlib-compressed Packet Data Uncompression DoS
47932Wireshark NCP Dissector Unspecified Infinite Loop DoS
40456Wireshark DNP3 Dissector Malformed Packet Handling Remote Infinite Loop DoS
37642Wireshark Crafted iSeries Capture File Handling Remote DoS
33074Wireshark IEEE 802.11 Dissector Unspecified DoS

Milw0rm Exploits

idDescription
2009-03-30Wireshark <= 1.0.6 PN-DCP Format String Exploit PoC
2007-08-31Wireshark < 0.99.5 DNP3 Dissector Infinite Loop Exploit

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-02-12Name : Gentoo Security Advisory GLSA 201110-02 (wireshark)
File : nvt/glsa_201110_02.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:0313 centos3 i386
File : nvt/gb_CESA-2009_0313_wireshark_centos3_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:0313 centos4 i386
File : nvt/gb_CESA-2009_0313_wireshark_centos4_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2010:0360 centos5 i386
File : nvt/gb_CESA-2010_0360_wireshark_centos5_i386.nasl
2011-08-09Name : CentOS Update for wireshark CESA-2009:1100 centos3 i386
File : nvt/gb_CESA-2009_1100_wireshark_centos3_i386.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for wireshark CESA-2009:1100 centos5 i386
File : nvt/gb_CESA-2009_1100_wireshark_centos5_i386.nasl
2011-06-20Name : Fedora Update for wireshark FEDORA-2011-7858
File : nvt/gb_fedora_2011_7858_wireshark_fc13.nasl
2011-05-05Name : Fedora Update for wireshark FEDORA-2011-5529
File : nvt/gb_fedora_2011_5529_wireshark_fc13.nasl
2011-03-15Name : Fedora Update for wireshark FEDORA-2011-2620
File : nvt/gb_fedora_2011_2620_wireshark_fc13.nasl
2011-02-04Name : Fedora Update for wireshark FEDORA-2011-0460
File : nvt/gb_fedora_2011_0460_wireshark_fc13.nasl
2011-01-14Name : Fedora Update for wireshark FEDORA-2011-0167
File : nvt/gb_fedora_2011_0167_wireshark_fc13.nasl
2010-09-07Name : Fedora Update for wireshark FEDORA-2010-13416
File : nvt/gb_fedora_2010_13416_wireshark_fc13.nasl
2010-09-07Name : Fedora Update for wireshark FEDORA-2010-13427
File : nvt/gb_fedora_2010_13427_wireshark_fc12.nasl
2010-08-30Name : CentOS Update for wireshark CESA-2010:0625 centos4 i386
File : nvt/gb_CESA-2010_0625_wireshark_centos4_i386.nasl
2010-08-13Name : RedHat Update for wireshark RHSA-2010:0625-01
File : nvt/gb_RHSA-2010_0625-01_wireshark.nasl
2010-07-06Name : Debian Security Advisory DSA 2066-1 (wireshark)
File : nvt/deb_2066_1.nasl
2010-06-22Name : Wireshark SigComp Universal Decompressor Virtual Machine dissector DOS Vulner...
File : nvt/secpod_wireshark_sigcomp_dissector_dos_vuln_win.nasl
2010-06-11Name : Mandriva Update for wireshark MDVSA-2010:113 (wireshark)
File : nvt/gb_mandriva_MDVSA_2010_113.nasl
2010-04-29Name : CentOS Update for wireshark CESA-2010:0360 centos3 i386
File : nvt/gb_CESA-2010_0360_wireshark_centos3_i386.nasl
2010-04-29Name : CentOS Update for wireshark CESA-2010:0360 centos4 i386
File : nvt/gb_CESA-2010_0360_wireshark_centos4_i386.nasl
2010-04-29Name : RedHat Update for wireshark RHSA-2010:0360-01
File : nvt/gb_RHSA-2010_0360-01_wireshark.nasl
2010-04-09Name : Mandriva Update for rpmdrake MDVA-2010:113 (rpmdrake)
File : nvt/gb_mandriva_MDVA_2010_113.nasl
2009-12-14Name : SLES11: Security update for wireshark
File : nvt/sles11_wireshark1.nasl
2009-12-10Name : Fedora Core 10 FEDORA-2009-7998 (wireshark)
File : nvt/fcore_2009_7998.nasl
2009-12-10Name : Mandriva Security Advisory MDVSA-2009:292-1 (wireshark)
File : nvt/mdksa_2009_292_1.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0066.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0890.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0360.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-0313.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0625.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-1100.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0058.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0059.nasl - Type : ACT_GATHER_INFO
2013-06-28Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2007-0709.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20081001_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100420_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090304_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20071107_wireshark_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20071115_wireshark_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20100811_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090615_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20080121_wireshark_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2011-10-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201110-02.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_1_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_wireshark-101222.nasl - Type : ACT_GATHER_INFO
2011-04-07Name : The remote SuSE 11 host is missing a security update.
File : suse_11_wireshark-110331.nasl - Type : ACT_GATHER_INFO
2011-02-03Name : The remote Fedora host is missing a security update.
File : fedora_2011-0460.nasl - Type : ACT_GATHER_INFO
2011-01-14Name : The remote Fedora host is missing a security update.
File : fedora_2011-0167.nasl - Type : ACT_GATHER_INFO
2010-10-11Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_ethereal-6628.nasl - Type : ACT_GATHER_INFO