Stack-based Buffer Overflow in Ethereal OSPF Protocol Dissector
CVE-2005-3651

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal
Vendor: CVE Published:; 10 December 2005

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2005-3651?

A stack-based buffer overflow vulnerability exists in the dissect_ospf_v3_address_prefix function within the OSPF protocol dissector of Ethereal. This vulnerability allows remote attackers to execute arbitrary code by sending improperly crafted OSPF packets to affected versions of Ethereal, including 0.10.12. Exploiting this flaw can lead to unauthorized access and potential system compromise.

References

http://lists.suse.de/archive/suse-security-announce/2006-...

vendor-advisoryx_refsource_SUSE

http://securitytracker.com/id?1015337

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/18911

third-party-advisoryx_refsource_SECUNIA

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 10, 2005
Vulnerability Reserved
Nov 18, 2005