Lucene search
HistoryDec 23, 2002 - 5:00 a.m.
CVE-2002-1356
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
High
EPSS
0.018
Percentile
88.2%
Ethereal 0.9.7 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed packets to the (1) LMP, (2) PPP, or (3) TDS dissectors, possibly related to a missing field for EndVerifyAck messages.
Affected configurations
Node
ethereal_groupetherealRange≤0.9.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ethereal_group | ethereal | * | cpe:2.3:a:ethereal_group:ethereal:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2002-1356
2002-12-23 05:00:00
cvelist
cvelist
CVE-2002-1356
2002-12-17 05:00:00
nessus
nessus
RHEL 2.1 : ethereal (RHSA-2002:291)
2004-07-06 00:00:00
redhat
redhat
(RHSA-2002:291) ethereal security update
2003-02-06 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
High
EPSS
0.018
Percentile
88.2%
Related for NVD:CVE-2002-1356