5

CVE-2006-4805

epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a zero length value when it is decoded.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version0.9.8
WiresharkWireshark Version0.9.10
WiresharkWireshark Version0.10
WiresharkWireshark Version0.10.4
WiresharkWireshark Version0.10.13
WiresharkWireshark Version0.99
WiresharkWireshark Version0.99.1
WiresharkWireshark Version0.99.2
WiresharkWireshark Version0.99.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.06% 0.893
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P
http://secunia.com/advisories/22929
http://secunia.com/advisories/22590
Vendor Advisory
http://secunia.com/advisories/22659
http://secunia.com/advisories/22672
http://secunia.com/advisories/22692
http://secunia.com/advisories/22797
http://secunia.com/advisories/22841
http://secunia.com/advisories/23096
http://securitytracker.com/id?1017129
http://support.avaya.com/elmodocs2/security/ASA-2006-255.htm
http://www.kb.cert.org/vuls/id/723736
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2006:195
http://www.novell.com/linux/security/advisories/2006_65_ethereal.html
http://www.redhat.com/support/errata/RHSA-2006-0726.html
http://www.securityfocus.com/archive/1/450307/100/0/threaded
http://www.securityfocus.com/bid/20762
http://www.us.debian.org/security/2006/dsa-1201
http://www.vupen.com/english/advisories/2006/4220
http://www.wireshark.org/security/wnpa-sec-2006-03.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/29843
https://issues.rpath.com/browse/RPL-746
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10199