|
267631
|
5.5 |
MEDIUM
Local
|
wireshark
|
wireshark
|
wiretap/nettrace_3gpp_32_423.c in the 3GPP TS 32.423 Trace file parser in Wireshark 2.0.x before 2.0.2 does not ensure that a '\0' character is present at the end of certain strings, which allows rem…
|
CWE-20
Improper Input Validation
|
CVE-2016-2527
|
2024-11-21 11:48 |
2016-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267632
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
epan/dissectors/packet-hiqnet.c in the HiQnet dissector in Wireshark 2.0.x before 2.0.2 does not validate the data type, which allows remote attackers to cause a denial of service (out-of-bounds read…
|
CWE-20
Improper Input Validation
|
CVE-2016-2526
|
2024-11-21 11:48 |
2016-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267633
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
epan/dissectors/packet-http2.c in the HTTP/2 dissector in Wireshark 2.0.x before 2.0.2 does not limit the amount of header data, which allows remote attackers to cause a denial of service (memory con…
|
CWE-20
Improper Input Validation
|
CVE-2016-2525
|
2024-11-21 11:48 |
2016-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267634
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
epan/dissectors/packet-x509af.c in the X.509AF dissector in Wireshark 2.0.x before 2.0.2 mishandles the algorithm ID, which allows remote attackers to cause a denial of service (application crash) vi…
|
CWE-20
Improper Input Validation
|
CVE-2016-2524
|
2024-11-21 11:48 |
2016-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267635
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
The dnp3_al_process_object function in epan/dissectors/packet-dnp.c in the DNP3 dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 allows remote attackers to cause a denial of servic…
|
CWE-399
Resource Management Errors
|
CVE-2016-2523
|
2024-11-21 11:48 |
2016-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267636
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
The dissect_ber_constrained_bitstring function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 2.0.x before 2.0.2 does not verify that a certain length is nonzero, which allow…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-2522
|
2024-11-21 11:48 |
2016-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267637
|
7.8 |
HIGH
Local
|
wireshark
|
wireshark
|
Untrusted search path vulnerability in the WiresharkApplication class in ui/qt/wireshark_application.cpp in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 on Windows allows local users to gai…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-2521
|
2024-11-21 11:48 |
2016-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267638
|
7.5 |
HIGH
Network
|
squid-cache
|
squid
|
http.cc in Squid 4.x before 4.0.7 relies on the HTTP status code after a response-parsing failure, which allows remote HTTP servers to cause a denial of service (assertion failure and daemon exit) vi…
|
CWE-20
Improper Input Validation
|
CVE-2016-2572
|
2024-11-21 11:48 |
2016-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267639
|
7.5 |
HIGH
Network
|
squid-cache
|
squid
|
http.cc in Squid 3.x before 3.5.15 and 4.x before 4.0.7 proceeds with the storage of certain data after a response-parsing failure, which allows remote HTTP servers to cause a denial of service (asse…
|
CWE-20
Improper Input Validation
|
CVE-2016-2571
|
2024-11-21 11:48 |
2016-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267640
|
7.5 |
HIGH
Network
|
squid-cache
|
squid
|
The Edge Side Includes (ESI) parser in Squid 3.x before 3.5.15 and 4.x before 4.0.7 does not check buffer limits during XML parsing, which allows remote HTTP servers to cause a denial of service (ass…
|
CWE-20
Improper Input Validation
|
CVE-2016-2570
|
2024-11-21 11:48 |
2016-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
