Ethereal@0.10.2 Security Vulnerabilities and Issues — Ethereal@0.10.2 CVE List

Lucene search

Ethereal GroupEthereal0.10.2

34 matches found

CVE•added 2005/08/10 4:0 a.m.•67 views

CVE-2005-2367

Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and gain privileges via a crafted AFP packet.

7.5CVSS6.5AI score0.19352EPSS

CVE•added 2005/08/10 4:0 a.m.•57 views

CVE-2005-2360

Unknown vulnerability in the LDAP dissector in Ethereal 0.8.5 through 0.10.11 allows remote attackers to cause a denial of service (free static memory and application crash) via unknown attack vectors.

5CVSS6.2AI score0.01824EPSS

CVE•added 2005/05/02 4:0 a.m.•56 views

CVE-2005-0084

Buffer overflow in the X11 dissector in Ethereal 0.8.10 through 0.10.8 allows remote attackers to execute arbitrary code via a crafted packet.

7.5CVSS7.4AI score0.02317EPSS

CVE•added 2005/10/27 10:2 a.m.•55 views

CVE-2005-3248

Unspecified vulnerability in the X11 dissector in Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (divide-by-zero) via unknown vectors.

5CVSS6.2AI score0.03224EPSS

CVE•added 2005/08/10 4:0 a.m.•54 views

CVE-2005-2363

Unknown vulnerability in the (1) SMPP dissector, (2) 802.3 dissector, (3) DHCP, (4) MEGACO dissector, or (5) H1 dissector in Ethereal 0.8.15 through 0.10.11 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors.

5CVSS6.2AI score0.02161EPSS

CVE•added 2005/08/10 4:0 a.m.•52 views

CVE-2005-2365

Unknown vulnerability in the SMB dissector in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a buffer overflow or a denial of service (memory consumption) via unknown attack vectors.

5CVSS6.7AI score0.01561EPSS

CVE•added 2005/08/10 4:0 a.m.•51 views

CVE-2005-2364

Unknown vulnerability in the (1) GIOP dissector, (2) WBXML, or (3) CAMEL dissector in Ethereal 0.8.20 through 0.10.11 allows remote attackers to cause a denial of service (application crash) via certain packets that cause a null pointer dereference.

5CVSS6.3AI score0.02161EPSS

CVE•added 2005/10/27 10:2 a.m.•51 views

CVE-2005-3249

Unspecified vulnerability in the WSP dissector in Ethereal 0.10.1 to 0.10.12 allows remote attackers to cause a denial of service or corrupt memory via unknown vectors that cause Ethereal to free an invalid pointer.

6.4CVSS6.3AI score0.04824EPSS

CVE•added 2005/03/10 5:0 a.m.•50 views

CVE-2004-1761

Unknown vulnerability in Ethereal 0.8.13 to 0.10.2 allows attackers to cause a denial of service (segmentation fault) via a malformed color filter file.

5CVSS7.3AI score0.00705EPSS

CVE•added 2005/08/10 4:0 a.m.•50 views

CVE-2005-2361

Unknown vulnerability in the (1) AgentX dissector, (2) PER dissector, (3) DOCSIS dissector, (4) SCTP graphs, (5) HTTP dissector, (6) DCERPC, (7) DHCP, (8) RADIUS dissector, (9) Telnet dissector, (10) IS-IS LSP dissector, or (11) NCP dissector in Ethereal 0.8.19 through 0.10.11 allows remote attacke...

5CVSS6.2AI score0.01824EPSS

CVE•added 2005/10/27 10:2 a.m.•50 views

CVE-2005-3242

Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (crash) via unknown vectors in (1) the IrDA dissector and (2) the SMB dissector when SMB transaction payload reassembly is enabled.

5CVSS6.2AI score0.03224EPSS

CVE•added 2005/05/05 4:0 a.m.•49 views

CVE-2005-1470

Multiple unknown vulnerabilities in the (1) TZSP, (2) MGCP, (3) ISUP, (4) SMB, or (5) Bittorrent dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (segmentation fault) via unknown vectors.

5CVSS6.5AI score0.13358EPSS

CVE•added 2005/10/27 10:2 a.m.•49 views

CVE-2005-3241

Multiple vulnerabilities in Ethereal 0.10.12 and earlier allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors in the (1) ISAKMP, (2) FC-FCS, (3) RSVP, and (4) ISIS LSP dissector.

5CVSS6.5AI score0.04826EPSS

CVE•added 2005/12/10 11:3 a.m.•48 views

CVE-2005-3651

Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets.

7.5CVSS7.8AI score0.05202EPSS

CVE•added 2005/10/27 10:2 a.m.•47 views

CVE-2005-3243

Multiple buffer overflows in Ethereal 0.10.12 and earlier might allow remote attackers to execute arbitrary code via unknown vectors in the (1) SLIMP3 and (2) AgentX dissector.

7.5CVSS7.4AI score0.20239EPSS

CVE•added 2005/10/27 10:2 a.m.•45 views

CVE-2005-3246

Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service (null dereference) via unknown vectors in the (1) SCSI, (2) sFlow, or (3) RTnet dissectors.

5CVSS6.2AI score0.03224EPSS

CVE•added 2005/05/05 4:0 a.m.•44 views

CVE-2005-1456

Multiple unknown vulnerabilities in the (1) DHCP and (2) Telnet dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (abort).

5CVSS6.5AI score0.01117EPSS

CVE•added 2005/05/05 4:0 a.m.•44 views

CVE-2005-1463

Multiple format string vulnerabilities in the (1) DHCP and (2) ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.

7.5CVSS7.2AI score0.02261EPSS

CVE•added 2005/11/01 12:47 p.m.•44 views

CVE-2005-3313

The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service (infinite loop).

5CVSS6.2AI score0.03891EPSS

CVE•added 2005/05/05 4:0 a.m.•42 views

CVE-2005-1457

Multiple unknown vulnerabilities in the (1) AIM, (2) LDAP, (3) FibreChannel, (4) GSM_MAP, (5) SRVLOC, and (6) NTLMSSP dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash).

5CVSS6.5AI score0.01117EPSS

CVE•added 2005/05/05 4:0 a.m.•42 views

CVE-2005-1459

Multiple unknown vulnerabilities in the (1) WSP, (2) BER, (3) SMB, (4) NDPS, (5) IAX2, (6) RADIUS, (7) TCAP, (8) MRDISC, (9) 802.3 Slow, (10) SMBMailslot, or (11) SMB PIPE dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (assert error).

5CVSS6.5AI score0.01271EPSS

CVE•added 2005/05/05 4:0 a.m.•41 views

CVE-2005-1461

Multiple buffer overflows in the (1) SIP, (2) CMIP, (3) CMP, (4) CMS, (5) CRMF, (6) ESS, (7) OCSP, (8) X.509, (9) ISIS, (10) DISTCC, (11) FCELS, (12) Q.931, (13) NCP, (14) TCAP, (15) ISUP, (16) MEGACO, (17) PKIX1Explitit, (18) PKIX_Qualified, (19) Presentation dissectors in Ethereal before 0.10.11 ...

7.5CVSS7.2AI score0.09699EPSS

CVE•added 2005/05/05 4:0 a.m.•41 views

CVE-2005-1466

Unknown vulnerability in the DICOM dissector in Ethereal before 0.10.11 allows remote attackers to cause a denial of service (large memory allocation) via unknown vectors.

5CVSS6.2AI score0.01271EPSS

CVE•added 2005/05/05 4:0 a.m.•41 views

CVE-2005-1467

Unknown vulnerability in the NDPS dissector in Ethereal before 0.10.11 allows remote attackers to cause a denial of service (memory exhaustion) via unknown vectors.

5CVSS6.2AI score0.01117EPSS

CVE•added 2005/12/29 11:3 a.m.•41 views

CVE-2005-4585

Unspecified vulnerability in the GTP dissector for Ethereal 0.9.1 to 0.10.13 allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors.

7.8CVSS6.3AI score0.0517EPSS

CVE•added 2005/05/05 4:0 a.m.•40 views

CVE-2005-1464

Multiple unknown vulnerabilities in the (1) KINK, (2) L2TP, (3) MGCP, (4) EIGRP, (5) DLSw, (6) MEGACO, (7) LMP, and (8) RSVP dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (infinite loop).

5CVSS6.5AI score0.01297EPSS

CVE•added 2005/05/05 4:0 a.m.•39 views

CVE-2005-1460

Multiple unknown dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (assert error) via an invalid protocol tree item length.

5CVSS6.2AI score0.01117EPSS

CVE•added 2005/05/05 4:0 a.m.•39 views

CVE-2005-1468

Multiple unknown vulnerabilities in the (1) WSP, (2) Q.931, (3) H.245, (4) KINK, (5) MGCP, (6) RPC, (7) SMBMailslot, and (8) SMB NETLOGON dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash) via unknown vectors that lead to a null dereference.

5CVSS6.5AI score0.01498EPSS

CVE•added 2005/05/05 4:0 a.m.•38 views

CVE-2005-1458

Multiple unknown "other problems" in the KINK dissector in Ethereal before 0.10.11 have unknown impact and attack vectors.

5CVSS6.2AI score0.00743EPSS

CVE•added 2005/05/05 4:0 a.m.•38 views

CVE-2005-1465

Unknown vulnerability in the NCP dissector in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (long loop).

5CVSS6.2AI score0.01271EPSS

CVE•added 2005/08/10 4:0 a.m.•38 views

CVE-2005-2362

Unknown vulnerability several dissectors in Ethereal 0.9.0 through 0.10.11 allows remote attackers to cause a denial of service (application crash) by reassembling certain packets.

5CVSS6.2AI score0.01344EPSS

CVE•added 2005/05/05 4:0 a.m.•37 views

CVE-2005-1469

Unknown vulnerability in the GSM dissector in Ethereal before 0.10.11 allows remote attackers to cause the dissector to access an invalid pointer.

5CVSS6.2AI score0.01054EPSS

CVE•added 2005/04/26 4:0 a.m.•35 views

CVE-2005-1281

Ethereal 0.10.10 and earlier allows remote attackers to cause a denial of service (infinite loop) via a crafted RSVP packet of length 4.

5CVSS6.5AI score0.00786EPSS

CVE•added 2005/05/05 4:0 a.m.•35 views

CVE-2005-1462

Double free vulnerability in the ICEP dissector in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.

7.5CVSS7AI score0.01888EPSS