5

CVE-2004-0635

The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read.

Data is provided by the National Vulnerability Database (NVD)
Ethereal GroupEthereal Version0.8.15
Ethereal GroupEthereal Version0.8.16
Ethereal GroupEthereal Version0.8.17
Ethereal GroupEthereal Version0.8.18
Ethereal GroupEthereal Version0.8.19
Ethereal GroupEthereal Version0.9
Ethereal GroupEthereal Version0.9.1
Ethereal GroupEthereal Version0.9.2
Ethereal GroupEthereal Version0.9.3
Ethereal GroupEthereal Version0.9.4
Ethereal GroupEthereal Version0.9.5
Ethereal GroupEthereal Version0.9.6
Ethereal GroupEthereal Version0.9.7
Ethereal GroupEthereal Version0.9.8
Ethereal GroupEthereal Version0.9.9
Ethereal GroupEthereal Version0.9.10
Ethereal GroupEthereal Version0.9.11
Ethereal GroupEthereal Version0.9.12
Ethereal GroupEthereal Version0.9.13
Ethereal GroupEthereal Version0.9.14
Ethereal GroupEthereal Version0.9.15
Ethereal GroupEthereal Version0.9.16
Ethereal GroupEthereal Version0.10
Ethereal GroupEthereal Version0.10.1
Ethereal GroupEthereal Version0.10.2
Ethereal GroupEthereal Version0.10.3
Ethereal GroupEthereal Version0.10.4
MandrakesoftMandrake Linux Version9.2
MandrakesoftMandrake Linux Version10.0
RedhatEnterprise Linux Version2.1 Editionadvanced_server
RedhatEnterprise Linux Version2.1 Editionenterprise_server
RedhatEnterprise Linux Version2.1 Editionworkstation
RedhatEnterprise Linux Version3.0 Editionadvanced_server
RedhatEnterprise Linux Version3.0 Editionenterprise_server
RedhatEnterprise Linux Version3.0 Editionworkstation_server
RedhatLinux Advanced Workstation Version2.1 Editionas
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 8.5% 0.915
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P