Lucene search
HistoryJun 25, 2002 - 4:00 a.m.
CVE-2002-0353
cve-2002-0353
asn.1 parser
ethereal
dos attack
remote attack
memory misallocation
6.9 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.006 Low
EPSS
Percentile
79.1%
The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ethereal_group:ethereal | ethereal group ethereal | eq | 0.9.2 |
| ethereal_group:ethereal | ethereal group ethereal | eq | 0.9.1 |
Related
debian
debian
[SECURITY] [DSA-130-1] memory allocation error in ethereal
2002-06-01 00:00:00
openvas
openvas
Debian Security Advisory DSA 130-1 (ethereal)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-130-1 : ethereal - remotely triggered memory allocation error
2004-09-29 00:00:00
6.9 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.006 Low
EPSS
Percentile
79.1%
Related for CVE-2002-0353