|
268861
|
- |
|
oracle
wireshark
|
solaris
linux
wireshark
|
The ptvcursor_add function in the ptvcursor implementation in epan/proto.c in Wireshark 1.12.x before 1.12.7 does not check whether the expected amount of data is available, which allows remote attac…
|
CWE-20
Improper Input Validation
|
CVE-2015-6248
|
2024-11-21 11:34 |
2015-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268862
|
- |
|
oracle
wireshark
|
solaris
wireshark
|
The dissect_openflow_tablemod_v5 function in epan/dissectors/packet-openflow_v5.c in the OpenFlow dissector in Wireshark 1.12.x before 1.12.7 does not validate a certain offset value, which allows re…
|
CWE-20
Improper Input Validation
|
CVE-2015-6247
|
2024-11-21 11:34 |
2015-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268863
|
- |
|
oracle
wireshark
|
solaris
linux
wireshark
|
The dissect_wa_payload function in epan/dissectors/packet-waveagent.c in the WaveAgent dissector in Wireshark 1.12.x before 1.12.7 mishandles large tag values, which allows remote attackers to cause …
|
CWE-20
Improper Input Validation
|
CVE-2015-6246
|
2024-11-21 11:34 |
2015-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268864
|
- |
|
wireshark
oracle
|
wireshark
solaris
linux
|
epan/dissectors/packet-gsm_rlcmac.c in the GSM RLC/MAC dissector in Wireshark 1.12.x before 1.12.7 uses incorrect integer data types, which allows remote attackers to cause a denial of service (infin…
|
CWE-20
Improper Input Validation
|
CVE-2015-6245
|
2024-11-21 11:34 |
2015-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268865
|
- |
|
wireshark
oracle
|
wireshark
solaris
linux
|
The dissect_zbee_secure function in epan/dissectors/packet-zbee-security.c in the ZigBee dissector in Wireshark 1.12.x before 1.12.7 improperly relies on length fields contained in packet data, which…
|
CWE-20
Improper Input Validation
|
CVE-2015-6244
|
2024-11-21 11:34 |
2015-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268866
|
- |
|
oracle
wireshark
|
solaris
linux
wireshark
|
The dissector-table implementation in epan/packet.c in Wireshark 1.12.x before 1.12.7 mishandles table searches for empty strings, which allows remote attackers to cause a denial of service (applicat…
|
CWE-20
Improper Input Validation
|
CVE-2015-6243
|
2024-11-21 11:34 |
2015-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268867
|
- |
|
oracle
wireshark
|
solaris
wireshark
|
The wmem_block_split_free_chunk function in epan/wmem/wmem_allocator_block.c in the wmem block allocator in the memory manager in Wireshark 1.12.x before 1.12.7 does not properly consider a certain c…
|
CWE-20
Improper Input Validation
|
CVE-2015-6242
|
2024-11-21 11:34 |
2015-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268868
|
- |
|
wireshark
oracle
|
wireshark
solaris
|
The proto_tree_add_bytes_item function in epan/proto.c in the protocol-tree implementation in Wireshark 1.12.x before 1.12.7 does not properly terminate a data structure after a failure to locate a n…
|
CWE-20
Improper Input Validation
|
CVE-2015-6241
|
2024-11-21 11:34 |
2015-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268869
|
- |
|
gnu
debian
|
gnutls
debian_linux
|
Double free vulnerability in GnuTLS before 3.3.17 and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service via a long DistinguishedName (DN) entry in a certificate.
|
NVD-CWE-Other
|
CVE-2015-6251
|
2024-11-21 11:34 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268870
|
- |
|
djangoproject
canonical
oracle
|
django
ubuntu_linux
solaris
|
The (1) contrib.sessions.backends.base.SessionBase.flush and (2) cache_db.SessionStore.flush functions in Django 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions create empty ses…
|
CWE-399
Resource Management Errors
|
CVE-2015-5964
|
2024-11-21 11:34 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
