Oval Definition:	oval:org.mitre.oval:tst:91979
Comment: Wireshark version is less than 1.8.12 Type: registry_test Namespace: windows Check_Existence: at_least_one_exists Check: all State Operator: AND References Object: oval:org.mitre.oval:obj:6871 State: oval:org.mitre.oval:ste:26068 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:20338 V The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 does not check for empty lines, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. 2014-02-24 oval:org.mitre.oval:def:21227 V Multiple buffer overflows in the create_ntlmssp_v2_key function in epan/dissectors/packet-ntlmssp.c in the NTLMSSP v2 dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 allow remote attackers to cause a denial of service (application crash) via a long domain name in a packet. 2014-02-24
BACK