5

CVE-2007-0459

Exploit
packet-tcp.c in the TCP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.4 allows remote attackers to cause a denial of service (application crash or hang) via fragmented HTTP packets.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WiresharkWireshark Version0.99.2
WiresharkWireshark Version0.99.3
WiresharkWireshark Version0.99.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.1% 0.793
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://patches.sgi.com/support/free/security/advisories/20070301-01-P.asc
http://secunia.com/advisories/24650
Vendor Advisory
http://fedoranews.org/cms/node/2565
http://secunia.com/advisories/24011
http://secunia.com/advisories/24016
Patch
Vendor Advisory
http://secunia.com/advisories/24025
http://secunia.com/advisories/24084
http://secunia.com/advisories/24515
http://secunia.com/advisories/24970
Vendor Advisory
http://securitytracker.com/id?1017581
http://support.avaya.com/elmodocs2/security/ASA-2007-166.htm
http://www.mandriva.com/security/advisories?name=MDKSA-2007:033
http://www.redhat.com/support/errata/RHSA-2007-0066.html
http://www.securityfocus.com/bid/22352
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2007/0443
http://www.wireshark.org/security/wnpa-sec-2007-01.html
Patch
Vendor Advisory
https://issues.rpath.com/browse/RPL-985
http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1200
Vendor Advisory
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/32053
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10465
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14875