Enterprise Linux@5 Security Vulnerabilities and Issues — Enterprise Linux@5 CVE List

Lucene search

RedhatEnterprise Linux5

10 matches found

CVE•added 2012/04/11 10:39 a.m.•100 views

CVE-2012-0042

Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet, related to epan/to_str.c.

2.9CVSS6.2AI score0.00206EPSS

CVE•added 2012/04/11 10:39 a.m.•94 views

CVE-2012-0066

Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a (1) Accellent 5Views (aka .5vw) file, (2) I4B trace file, or (3) NETMON 2 capture file.

4.3CVSS6.2AI score0.01355EPSS

CVE•added 2012/04/11 10:39 a.m.•93 views

CVE-2012-0041

The dissect_packet function in epan/packet.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a capture file, as demonstrated by an airopeek file.

4.3CVSS6.2AI score0.01566EPSS

CVE•added 2012/04/11 10:39 a.m.•90 views

CVE-2012-0067

wiretap/iptrace.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in an AIX iptrace file.

4.3CVSS6.2AI score0.08779EPSS

CVE•added 2012/06/13 10:24 a.m.•85 views

CVE-2012-2313

The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the Linux kernel before 3.3.7 does not restrict access to the SIOCSMIIREG command, which allows local users to write data to an Ethernet adapter via an ioctl call.

1.2CVSS5.5AI score0.00224EPSS

CVE•added 2012/08/16 10:38 a.m.•65 views

CVE-2012-4285

The dissect_pft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a zero-length message.

3.3CVSS6.3AI score0.00652EPSS

CVE•added 2012/08/16 10:38 a.m.•63 views

CVE-2012-4289

epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a large number of ACL entries.

3.3CVSS6.3AI score0.00292EPSS

CVE•added 2012/08/16 10:38 a.m.•61 views

CVE-2012-4291

The CIP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet.

3.3CVSS6.3AI score0.00895EPSS

CVE•added 2012/08/16 10:38 a.m.•58 views

CVE-2012-4290

The CTDB dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a malformed packet.

3.3CVSS6.3AI score0.00895EPSS

CVE•added 2012/08/08 10:26 a.m.•56 views

CVE-2012-3440

A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files via a symlink attack on the /var/tmp/nsswitch.conf.bak temporary file.

5.6CVSS6.1AI score0.00121EPSS