Vulnerability & Exploit Database

Displaying all 6 entries

Results for: CVE-2016-7177 Back to search

Alpine Linux: CVE-2017-7468: curl TLS session resumption client cert bypass Vulnerability

  • Severity: 5
  • Published: April 19, 2017

In curl and libcurl 7.52.0 to and including 7.53.1, libcurl would attempt to resume a TLS session even if the client certificate had changed. That is unacceptable since a server by specification is allowed to skip the client certificate check on resume, and may instead use the old identity which was established by the previous certificat...

Wireshark : CVE-2016-7177 : Catapult DCT2000 dissector crash Vulnerability

  • Severity: 4
  • Published: September 09, 2016

epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

SUSE: CVE-2016-7177: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: September 09, 2016

epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

Oracle Solaris 11: CVE-2016-7177: Vulnerability in Wireshark Vulnerability

  • Severity: 4
  • Published: September 09, 2016

epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

Debian: CVE-2016-7177: wireshark -- security update Vulnerability

  • Severity: 4
  • Published: September 09, 2016

epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

Alpine Linux: CVE-2016-7177: wireshark Multiple issues Vulnerability

  • Severity: 4
  • Published: September 09, 2016

epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.