Lucene search

K
ubuntucveUbuntu.comUB:CVE-2005-0739
HistoryMay 02, 2005 - 12:00 a.m.

CVE-2005-0739

2005-05-0200:00:00
ubuntu.com
ubuntu.com
9

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.018

Percentile

88.4%

The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not
properly use certain routines for formatting strings, which could leave it
vulnerable to buffer overflows, as demonstrated using modified length
values that are not properly handled by the dissect_pdus and pduval_to_str
functions.

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.018

Percentile

88.4%