Lucene search

K
freebsdFreeBSDCB470368-94D2-11D9-A9E0-0001020EED82
HistoryMar 09, 2005 - 12:00 a.m.

ethereal -- multiple protocol dissectors vulnerabilities

2005-03-0900:00:00
vuxml.freebsd.org
11

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.025

Percentile

90.1%

An Ethreal Security Advisories reports:

Issues have been discovered in the following protocol
dissectors:

Matevz Pustisek discovered a buffer overflow in the
Etheric dissector. CVE: CAN-2005-0704
The GPRS-LLC dissector could crash if the “ignore
cipher bit” option was enabled. CVE: CAN-2005-0705
Diego Giago discovered a buffer overflow in the 3GPP2
A11 dissector. This flaw was later reported by Leon
Juranic. CVE: CAN-2005-0699
Leon Juranic discovered a buffer overflow in the IAPP dissector.
CVE: CAN-2005-0739
A bug in the JXTA dissector could make Ethereal crash.
A bug in the sFlow dissector could make Ethereal crash.

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.025

Percentile

90.1%