Remote Denial of Service Vulnerability in Ethereal by Ethereal
CVE-2005-3245

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal
Vendor: CVE Published:; 27 October 2005

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2005-3245?

A vulnerability exists in Ethereal versions 0.10.3 to 0.10.12 related to the ONC RPC dissector. When the option to dissect unknown RPC program numbers is activated, this flaw allows remote attackers to exploit it, potentially leading to excessive memory use and causing a denial of service. The issue emphasizes the importance of properly configuring software settings to mitigate such risks.

References

http://www.redhat.com/support/errata/RHSA-2005-809.html

vendor-advisoryx_refsource_REDHAT

http://secunia.com/advisories/17327

third-party-advisoryx_refsource_SECUNIA

http://www.gentoo.org/security/en/glsa/glsa-200510-25.xml

vendor-advisoryx_refsource_GENTOO

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 27, 2005
Vulnerability Reserved
Oct 17, 2005