| Vulnerability Name: | CVE-2005-2364 (CCN-21612) | ||||||||||||||||||||
| Assigned: | 2005-07-26 | ||||||||||||||||||||
| Published: | 2005-07-26 | ||||||||||||||||||||
| Updated: | 2017-10-11 | ||||||||||||||||||||
| Summary: | Unknown vulnerability in the (1) GIOP dissector, (2) WBXML, or (3) CAMEL dissector in Ethereal 0.8.20 through 0.10.11 allows remote attackers to cause a denial of service (application crash) via certain packets that cause a null pointer dereference. | ||||||||||||||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||||||||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||||||||||||||
| Vulnerability Type: | CWE-Other | ||||||||||||||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2005-2364 Source: CCN Type: Conectiva Linux Security Announcement CLSA-2005:1003 Fixes for multiple security vulnerabilities in ethereal Source: CCN Type: RHSA-2005-687 ethereal security update Source: CCN Type: SA16225 Ethereal Multiple Protocol Dissector and zlib Vulnerabilities Source: SECUNIA Type: UNKNOWN 16225 Source: SECUNIA Type: UNKNOWN 17102 Source: CCN Type: CIAC INFORMATION BULLETIN P-260 Ethereal 0.10.12 Released Source: DEBIAN Type: UNKNOWN DSA-853 Source: DEBIAN Type: DSA-853 ethereal -- several vulnerabilities Source: CCN Type: Ethereal, a network protocol analyzer Ethereal- The world's most popular network protocol analyzer Source: CCN Type: Ethereal Security Advisory #enpa-sa-00020 Multiple problems in Ethereal versions 0.8.5 to 0.10.10 Source: CONFIRM Type: Patch http://www.ethereal.com/appnotes/enpa-sa-00020.html Source: CCN Type: Ethereal- Download Ethereal Download page Source: CCN Type: GLSA-200507-27 Ethereal: Multiple vulnerabilities Source: GENTOO Type: Patch GLSA-200507-27 Source: SUSE Type: UNKNOWN SUSE-SR:2005:019 Source: OSVDB Type: UNKNOWN 18386 Source: CCN Type: OSVDB ID: 18386 Ethereal CAMEL Dissector Null Pointer Dereference DoS Source: FEDORA Type: UNKNOWN FLSA-2006:152922 Source: REDHAT Type: UNKNOWN RHSA-2005:687 Source: BID Type: UNKNOWN 14399 Source: CCN Type: BID-14399 Ethereal Multiple Protocol Dissector Vulnerabilities Source: XF Type: UNKNOWN ethereal-camel-null-pointer-dos(21612) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:10007 Source: SUSE Type: SUSE-SR:2005:018 SUSE Security Summary Report Source: SUSE Type: SUSE-SR:2005:019 SUSE Security Summary Report | ||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration RedHat 1:  Denotes that component is vulnerable | ||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||
| |||||||||||||||||||||
| BACK | |||||||||||||||||||||