Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-0739

CWE-1897 documents6 sources

Severity

5.0MEDIUM

EPSS

17.0%

top 5.01%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Ethereal Group Ethereal

Timeline

PublishedMay 2

Latest updateMay 1

Description

The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the dissect_pdus and pduval_to_str functions.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDethereal_group/ethereal0.10.9

Patches

Patch: www.debian.org ↗Patch: www.ethereal.com ↗Patch: www.debian.org ↗

🔴Vulnerability Details

GHSA

GHSA-9c75-8rvc-pmm7: The IAPP dissector (packet-iapp↗2022-05-01

▶

CVEList

CVE-2005-0739: The IAPP dissector (packet-iapp↗2005-03-13

▶

💥Exploits & PoCs

Exploit-DB

Ethereal 0.10.9 (Windows) - '3G-A11' Remote Buffer Overflow↗2005-03-12

▶

📋Vendor Advisories

Red Hat

security flaw↗2005-03-11

▶

💬Community

Bugzilla

CVE-2005-0739 security flaw↗2018-08-16

▶