CVE

Id
11945  
CVE No.
CVE-2005-0739  
Status
Candidate  
Description
The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the dissect_pdus and pduval_to_str functions.  
Phase
Assigned (20050313)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
85566 11945 CVE-2005-0739 BUGTRAQ:20050312 Ethereal remote buffer overflow #2  View
85567 11945 CVE-2005-0739 URL:http://marc.info/?l=bugtraq&m=111066805726551&w=2  View
85568 11945 CVE-2005-0739 MISC:http://security.lss.hr/index.php?page=details&ID=LSS-2005-03-05  View
85569 11945 CVE-2005-0739 MISC:http://anonsvn.ethereal.com/viewcvs/viewcvs.py?view=rev&rev=13707  View
85570 11945 CVE-2005-0739 CONFIRM:http://www.ethereal.com/appnotes/enpa-sa-00018.html  View
85571 11945 CVE-2005-0739 DEBIAN:DSA-718  View
85572 11945 CVE-2005-0739 URL:http://www.debian.org/security/2005/dsa-718  View
85573 11945 CVE-2005-0739 FEDORA:FLSA-2006:152922  View
85574 11945 CVE-2005-0739 URL:http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00003.html  View
85575 11945 CVE-2005-0739 GENTOO:GLSA-200503-16  View
85576 11945 CVE-2005-0739 URL:http://www.gentoo.org/security/en/glsa/glsa-200503-16.xml  View
85577 11945 CVE-2005-0739 MANDRAKE:MDKSA-2005:053  View
85578 11945 CVE-2005-0739 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:053  View
85579 11945 CVE-2005-0739 REDHAT:RHSA-2005:306  View
85580 11945 CVE-2005-0739 URL:http://www.redhat.com/support/errata/RHSA-2005-306.html  View
85581 11945 CVE-2005-0739 BID:12762  View
85582 11945 CVE-2005-0739 URL:http://www.securityfocus.com/bid/12762  View
85583 11945 CVE-2005-0739 OVAL:oval:org.mitre.oval:def:9687  View

Related JVN