Buffer Overflow Vulnerability in Wireshark Product by Ethereal
CVE-2006-3632

Currently unrated

Key Information:

Vendor: Ethereal Group
Status: Ethereal
Vendor: CVE Published:; 21 July 2006

🔔 Create Ethereal Group Vulnerability Alert

What is CVE-2006-3632?

A buffer overflow vulnerability in Wireshark, also known as Ethereal, affects versions 0.8.16 through 0.99.0. This flaw allows remote attackers to exploit the NFS dissector, potentially leading to denial of service or arbitrary code execution. Proper validation and sanitization processes are essential to mitigate the risks associated with this vulnerability.

References

ftp://patches.sgi.com/support/free/security/advisories/20...

vendor-advisoryx_refsource_SGI

http://rhn.redhat.com/errata/RHSA-2006-0602.html

vendor-advisoryx_refsource_REDHAT

http://www.novell.com/linux/security/advisories/2006_20_s...

vendor-advisoryx_refsource_SUSE

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 21, 2006
Vulnerability Reserved
Jul 17, 2006