Denial of Service Vulnerability in Wireshark by the Vendor
CVE-2006-3629

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal
Vendor: CVE Published:; 21 July 2006

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2006-3629?

A vulnerability exists in the MOUNT dissector of Wireshark versions 0.9.4 up to 0.99.0, which can be exploited by remote attackers to trigger a denial of service condition. This situation leads to excessive memory consumption, potentially crashing the application and disrupting network analysis tasks. Proper precautions and updates are recommended to mitigate the risks associated with this vulnerability.

References

ftp://patches.sgi.com/support/free/security/advisories/20...

vendor-advisoryx_refsource_SGI

http://rhn.redhat.com/errata/RHSA-2006-0602.html

vendor-advisoryx_refsource_REDHAT

http://www.novell.com/linux/security/advisories/2006_20_s...

vendor-advisoryx_refsource_SUSE

EPSS Score

7% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 21, 2006
Vulnerability Reserved
Jul 17, 2006