Buffer Overflow in Ethereal Affects Multiple Versions
CVE-2005-3243

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal
Vendor: CVE Published:; 27 October 2005

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2005-3243?

Ethereal, a network protocol analyzer, suffers from multiple buffer overflow vulnerabilities in versions 0.10.12 and earlier. These vulnerabilities could be exploited by remote attackers to execute arbitrary code on the affected systems through unknown vectors, particularly via SLIMP3 and AgentX dissectors. Users of Ethereal are advised to upgrade to the latest version to mitigate potential security risks.

References

http://www.redhat.com/support/errata/RHSA-2005-809.html

vendor-advisoryx_refsource_REDHAT

http://secunia.com/advisories/17327

third-party-advisoryx_refsource_SECUNIA

http://www.gentoo.org/security/en/glsa/glsa-200510-25.xml

vendor-advisoryx_refsource_GENTOO

EPSS Score

20% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 27, 2005
Vulnerability Reserved
Oct 17, 2005