Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2005-1463 | First vendor Publication | 2005-05-05 |
Vendor | Cve | Last vendor Modification | 2024-02-14 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Multiple format string vulnerabilities in the (1) DHCP and (2) ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1463 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10713 | |||
Oval ID: | oval:org.mitre.oval:def:10713 | ||
Title: | Multiple format string vulnerabilities in the (1) DHCP and (2) ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code. | ||
Description: | Multiple format string vulnerabilities in the (1) DHCP and (2) ANSI A dissectors in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-1463 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2008-09-24 | Name : Gentoo Security Advisory GLSA 200505-03 (Ethereal) File : nvt/glsa_200505_03.nasl |
2008-09-04 | Name : FreeBSD Ports: ethereal*, tethereal* File : nvt/freebsd_ethereal5.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
16119 | Ethereal DHCP Dissector Remote Format String Ethereal contains an unspecified format string flaw related to the DHCP dissector that may allow an attacker to execute arbitrary code. No further details have been provided. |
16094 | Ethereal ANSI A Dissector Remote Format String A remote format string handling flaw exists in Ethereal. The ANSI A dissector fails to validate user-supplied input. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | SMB Trans unicode andx data displacement null pointer DOS attempt RuleID : 3650 - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB Trans unicode data displacement null pointer DOS attempt RuleID : 3649 - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB Trans data displacement null pointer DOS attempt RuleID : 3648 - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB Trans andx data displacement null pointer DOS attempt RuleID : 3647 - Revision : 5 - Type : NETBIOS |
2014-01-10 | SMB-DS Trans unicode andx data displacement null pointer DOS attempt RuleID : 3646 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB-DS Trans unicode data displacement null pointer DOS attempt RuleID : 3645 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB-DS Trans data displacement null pointer DOS attempt RuleID : 3644 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB-DS Trans andx data displacement null pointer DOS attempt RuleID : 3643 - Revision : 4 - Type : NETBIOS |
2014-01-10 | SMB Trans unicode andx data displacement null pointer DOS attempt RuleID : 3642 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB Trans unicode data displacement null pointer DOS attempt RuleID : 3641 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB Trans data displacement null pointer DOS attempt RuleID : 3640 - Revision : 3 - Type : NETBIOS |
2014-01-10 | SMB Trans andx data displacement null pointer DOS attempt RuleID : 3639 - Revision : 3 - Type : NETBIOS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-07-03 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-427.nasl - Type : ACT_GATHER_INFO |
2005-07-13 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_76adaab0e4e311d9b8750001020eed82.nasl - Type : ACT_GATHER_INFO |
2005-05-28 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-427.nasl - Type : ACT_GATHER_INFO |
2005-05-11 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200505-03.nasl - Type : ACT_GATHER_INFO |
2005-05-11 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-083.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-02-14 13:28:31 |
|
2021-05-04 12:02:57 |
|
2021-04-22 01:03:11 |
|
2020-05-23 00:16:33 |
|
2017-10-11 09:23:31 |
|
2016-04-26 13:29:36 |
|
2014-02-17 10:31:19 |
|
2014-01-19 21:22:43 |
|
2013-05-11 11:25:45 |
|