CVE-2005-0699

Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via RADIUS authentication packets with large length values.

Published : 2005-03-08 05:00 Updated : 2017-10-11 01:29

7.5
CVSS Score More info
Score 7.5 / 10
7.5
Vendor Product Version URI
Redhat Enterprise Linux 2.1 cpe:/o:redhat:enterprise_linux:2.1::workstation_ia64
Altlinux Alt Linux compact_2.3 cpe:/o:altlinux:alt_linux:compact_2.3
Ethereal Group Ethereal 0.10.9 cpe:/a:ethereal_group:ethereal:0.10.9
Ethereal Group Ethereal 0.10.3 cpe:/a:ethereal_group:ethereal:0.10.3
Ethereal Group Ethereal 0.10.4 cpe:/a:ethereal_group:ethereal:0.10.4
Redhat Linux Advanced Workstation 2.1 cpe:/o:redhat:linux_advanced_workstation:2.1::itanium_processor
Ethereal Group Ethereal 0.10.7 cpe:/a:ethereal_group:ethereal:0.10.7
Ethereal Group Ethereal 0.10.8 cpe:/a:ethereal_group:ethereal:0.10.8
Redhat Enterprise Linux 2.1 cpe:/o:redhat:enterprise_linux:2.1::advanced_server
Redhat Enterprise Linux 3.0 cpe:/o:redhat:enterprise_linux:3.0::advanced_server
Redhat Enterprise Linux 3.0 cpe:/o:redhat:enterprise_linux:3.0::workstation_server
Ethereal Group Ethereal 0.10.5 cpe:/a:ethereal_group:ethereal:0.10.5
Ethereal Group Ethereal 0.10.6 cpe:/a:ethereal_group:ethereal:0.10.6
Redhat Enterprise Linux 3.0 cpe:/o:redhat:enterprise_linux:3.0::enterprise_server
Redhat Enterprise Linux 2.1 cpe:/o:redhat:enterprise_linux:2.1::enterprise_server
Redhat Enterprise Linux 4.0 cpe:/o:redhat:enterprise_linux:4.0::advanced_server
Redhat Enterprise Linux 4.0 cpe:/o:redhat:enterprise_linux:4.0::enterprise_server
Conectiva Linux 10.0 cpe:/o:conectiva:linux:10.0
Redhat Enterprise Linux 2.1 cpe:/o:redhat:enterprise_linux:2.1::enterprise_server_ia64
Redhat Enterprise Linux Desktop 3.0 cpe:/o:redhat:enterprise_linux_desktop:3.0
Conectiva Linux 9.0 cpe:/o:conectiva:linux:9.0
Redhat Enterprise Linux 2.1 cpe:/o:redhat:enterprise_linux:2.1::workstation
Redhat Linux Advanced Workstation 2.1 cpe:/o:redhat:linux_advanced_workstation:2.1::ia64
Redhat Enterprise Linux Desktop 4.0 cpe:/o:redhat:enterprise_linux_desktop:4.0
Redhat Enterprise Linux 4.0 cpe:/o:redhat:enterprise_linux:4.0::workstation
Redhat Enterprise Linux 2.1 cpe:/o:redhat:enterprise_linux:2.1::advanced_server_ia64
Altlinux Alt Linux junior_2.3 cpe:/o:altlinux:alt_linux:junior_2.3
  1. Conectiva (1) Search CVE
    1. Linux (2) Search CVE
      1. 10.0
      2. 9.0
  2. Ethereal Group (1) Search CVE
    1. Ethereal (7) Search CVE
      1. 0.10.9
      2. 0.10.3
      3. 0.10.4
      4. 0.10.7
      5. 0.10.8
      6. 0.10.5
      7. 0.10.6
  3. Altlinux (1) Search CVE
    1. Alt Linux (2) Search CVE
      1. Compact_2.3
      2. Junior_2.3
  4. Redhat (3) Search CVE
    1. Enterprise Linux Desktop (2) Search CVE
      1. 3.0
      2. 4.0
    2. Enterprise Linux (3) Search CVE
      1. 2.1
      2. 3.0
      3. 4.0
    3. Linux Advanced Workstation (1) Search CVE
      1. 2.1

CWE

There is no CWE for this CVE.

History of changes

Date Event
2005-03-08 05:00

New CVE