Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2005-0699

CVE information

Published

17 years ago

Last Modified

4 years ago

CVSSv2.0 Severity

High

Impact Analysis

Description

Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via RADIUS authentication packets with large length values..

CVSSv2.0 Score

Severity
High
Base Score
7.5/10
Exploit Score
10/10
Access Vector
Network
Access Complexity
Low
Authentication Required
None
Impact Score
6.4/10
Confidentiality Impact
Partial
Availability Impact
Partial
Integrity Impact
Partial

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:ethereal_group:ethereal:0.10.3:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:ethereal_group:ethereal:0.10.4:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:ethereal_group:ethereal:0.10.7:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:ethereal_group:ethereal:0.10.5:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:ethereal_group:ethereal:0.10.6:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:ethereal_group:ethereal:0.10.8:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:ethereal_group:ethereal:0.10.9:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server_ia64
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:4.0:*:advanced_server:*:*:
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:4.0:*:workstation:*:*:*:*:
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation_server:*
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:
  Yes
- -
cpe:2.3:o:altlinux:alt_linux:compact_2.3:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:altlinux:alt_linux:junior_2.3:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:
  Yes
- -
cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_pr
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server_ia
  Yes
- -
cpe:2.3:o:redhat:enterprise_linux:4.0:*:enterprise_server:*:
  Yes
- -