CVE-2004-0504

6 documents5 sources
Severity
5.0MEDIUM
EPSS
3.8%
top 11.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Ethereal Group EtherealSGI Propack
Timeline
PublishedAug 18
Latest updateMay 3

Description

Ethereal 0.10.3 allows remote attackers to cause a denial of service (crash) via certain SIP messages between Hotsip servers and clients.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDethereal_group/ethereal0.10.1, 0.10.2, 0.10.3+2
NVDsgi/propack2.4, 3.0+1

Patches

Patch: www.redhat.comPatch: www.securityfocus.comPatch: www.redhat.com

🔴Vulnerability Details

2
GHSA
GHSA-gv25-rf7q-whjp: Ethereal 02022-05-03
CVEList
CVE-2004-0504: Ethereal 02004-06-03

📋Vendor Advisories

1
Red Hat
security flaw2004-05-03

💬Community

2
Bugzilla
CVE-2004-0504 security flaw2018-08-16
Bugzilla
CAN-2004-0504/5/6/7 Ethereal 0.10.4 contains security fixes2004-05-27
CVE-2004-0504 (MEDIUM CVSS 5) | Ethereal 0.10.3 allows remote attac | cvebase.io