CVE-2004-0634

EPSS 10.55%
Veröffentlicht 06.12.2004 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 16

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ethereal Group ≫ Ethereal Version0.9.15

Ethereal Group ≫ Ethereal Version0.10.4

Gentoo ≫ Linux

Mandrakesoft ≫ Mandrake Linux Version9.2

Mandrakesoft ≫ Mandrake Linux Version10.0

Redhat ≫ Enterprise Linux Version2.1 Editionadvanced_server

Redhat ≫ Enterprise Linux Version2.1 Editionenterprise_server

Redhat ≫ Enterprise Linux Version2.1 Editionworkstation

Redhat ≫ Enterprise Linux Version3.0 Editionadvanced_server

Redhat ≫ Enterprise Linux Version3.0 Editionenterprise_server

Redhat ≫ Enterprise Linux Version3.0 Editionworkstation_server

Redhat ≫ Linux Advanced Workstation Version2.1 Editionas

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	10.55%	0.925

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=127381

http://secunia.com/advisories/12024

http://securitytracker.com/id?1010655

http://www.ethereal.com/appnotes/enpa-sa-00015.html

URL Repurposed

http://www.gentoo.org/security/en/glsa/glsa-200407-08.xml

Patch

Vendor Advisory

http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:067

Patch

Vendor Advisory

http://www.redhat.com/archives/fedora-announce-list/2004-July/msg00013.html

Patch

Vendor Advisory

http://www.redhat.com/archives/fedora-announce-list/2004-July/msg00014.html

Patch

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2004-378.html

http://www.kb.cert.org/vuls/id/518782

US Government Resource

https://exchange.xforce.ibmcloud.com/vulnerabilities/16631

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10252

https://nvd.nist.gov/vuln/detail/CVE-2004-0634

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-0634

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-0634

EUVD