CVE-2002-0834Improper Restriction of Operations within the Bounds of a Memory Buffer in Group Ethereal

5 documents5 sources
Severity
7.5HIGHNVD
EPSS
1.7%
top 17.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Ethereal Group Ethereal
Timeline
PublishedSep 24
Latest updateApr 30

Description

Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDethereal_group/ethereal8 versions+7

Patches

Patch: www.ethereal.comPatch: www.ethereal.com

🔴Vulnerability Details

2
GHSA
GHSA-g54r-v2hp-878p: Buffer overflow in the ISIS dissector for Ethereal 02022-04-30
CVEList
CVE-2002-0834: Buffer overflow in the ISIS dissector for Ethereal 02002-08-23

📋Vendor Advisories

1
Red Hat
security flaw2002-08-20

💬Community

1
Bugzilla
CVE-2002-0834 security flaw2018-08-16
CVE-2002-0834 — Ethereal Group Ethereal vulnerability | cvebase