Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2005-0739

Back to Search

SUSE Linux Security Vulnerability: CVE-2005-0739

Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
05/02/2005
Created
07/25/2018
Added
12/12/2013
Modified
07/04/2017

Description

The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the dissect_pdus and pduval_to_str functions.

Solution(s)

  • suse-upgrade-ethereal

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;