Lucene search

MitreCVE-2005-3780

HistoryNov 23, 2005 - 1:03 a.m.

CVE-2005-3780

2005-11-2301:03:00

mitre

web.nvd.nist.gov

cve-2005-3780

buffer overflow

ipupdate 1.1

arbitrary code execution

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.008

Percentile

81.5%

JSON

Multiple buffer overflows in IPUpdate 1.1 might allow attackers to execute arbitrary code via (1) memmcat in the memm module or (2) certain TSIG format records.

Affected configurations

Nvd

Node

ipupdateipupdateMatch1.0

ipupdateipupdateMatch1.0.1

ipupdateipupdateMatch1.0.2

ipupdateipupdateMatch1.0.3

VendorProductVersionCPE
ipupdateipupdate1.0cpe:2.3:a:ipupdate:ipupdate:1.0:*:*:*:*:*:*:*
ipupdateipupdate1.0.1cpe:2.3:a:ipupdate:ipupdate:1.0.1:*:*:*:*:*:*:*
ipupdateipupdate1.0.2cpe:2.3:a:ipupdate:ipupdate:1.0.2:*:*:*:*:*:*:*
ipupdateipupdate1.0.3cpe:2.3:a:ipupdate:ipupdate:1.0.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ipupdate	ipupdate	1.0	cpe:2.3:a:ipupdate:ipupdate:1.0:::::::*
ipupdate	ipupdate	1.0.1	cpe:2.3:a:ipupdate:ipupdate:1.0.1:::::::*
ipupdate	ipupdate	1.0.2	cpe:2.3:a:ipupdate:ipupdate:1.0.2:::::::*
ipupdate	ipupdate	1.0.3	cpe:2.3:a:ipupdate:ipupdate:1.0.3:::::::*

References

secunia.com/advisories/17681

sourceforge.net/project/shownotes.php?release_id=372666

www.osvdb.org/21036

www.osvdb.org/21037

www.securityfocus.com/bid/15534

www.vupen.com/english/advisories/2005/2523

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.008

Percentile

81.5%

JSON

Related for CVE-2005-3780