CVE-2005-0739 in Etherealinfo

Summary

The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the dissect_pdus and pduval_to_str functions.

Be aware that VulDB is the high quality source for vulnerability data.

Responsible

Reservation

03/13/2005

Disclosure

05/02/2005

Moderation

VulDB entry created

Entries

VDB-24599

CPE

ready

CWE

CWE-189 (Confirmed)

Exploit

Download

CVSS

5.3

EPSS

0.17024

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-0739
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-0739
CVE Details	https://www.cvedetails.com/cve/CVE-2005-0739/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!