Lucene search

K
cveRedhatCVE-2007-6439
HistoryDec 19, 2007 - 10:46 p.m.

CVE-2007-6439

2007-12-1922:46:00
CWE-399
redhat
web.nvd.nist.gov
32
wireshark
ethereal
cve-2007-6439
denial of service
remote attackers
ipv6
usb dissector
resource consumption
crash

CVSS2

6.1

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.1

Confidence

Low

EPSS

0.02

Percentile

89.3%

Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite or large loop) via the (1) IPv6 or (2) USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Firebird/Interbase, but it is already covered by CVE-2007-6116. The DCP ETSI issue is already covered by CVE-2007-6119.

Affected configurations

Nvd
Node
wiresharkwiresharkMatch0.99.6
VendorProductVersionCPE
wiresharkwireshark0.99.6cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*

References

CVSS2

6.1

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.1

Confidence

Low

EPSS

0.02

Percentile

89.3%