7.5

CVE-2006-4574

Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length values.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version >= 0.10.1 <= 0.99.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.1% 0.894
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE-193 Off-by-one Error

A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.

CWE-617 Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P
Broken Link
http://secunia.com/advisories/22929
Broken Link
http://secunia.com/advisories/22590
Vendor Advisory
Broken Link
http://secunia.com/advisories/22659
Broken Link
http://secunia.com/advisories/22672
Broken Link
http://secunia.com/advisories/22692
Broken Link
http://secunia.com/advisories/22797
Broken Link
http://secunia.com/advisories/22841
Broken Link
http://secunia.com/advisories/23096
Broken Link
http://securitytracker.com/id?1017129
Third Party Advisory
Broken Link
VDB Entry
http://support.avaya.com/elmodocs2/security/ASA-2006-255.htm
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2006:195
Third Party Advisory
http://www.novell.com/linux/security/advisories/2006_65_ethereal.html
Broken Link
http://www.redhat.com/support/errata/RHSA-2006-0726.html
Broken Link
http://www.securityfocus.com/archive/1/450307/100/0/threaded
Third Party Advisory
Broken Link
VDB Entry
http://www.securityfocus.com/bid/20762
Third Party Advisory
Broken Link
VDB Entry
http://www.us.debian.org/security/2006/dsa-1201
Broken Link
http://www.vupen.com/english/advisories/2006/4220
Broken Link
http://www.wireshark.org/security/wnpa-sec-2006-03.html
Third Party Advisory
https://issues.rpath.com/browse/RPL-746
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/29844
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9740
Broken Link