CVE-2006-3630
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
High
0.013 Low
EPSS
Percentile
85.8%
Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via the (1) NCP NMAS and (2) NDPS dissectors.
Affected configurations
| CPE | Name | Operator | Version |
|---|---|---|---|
| wireshark:wireshark | wireshark | eq | 0.9.7 |
| wireshark:wireshark | wireshark | eq | 0.9.8 |
| wireshark:wireshark | wireshark | eq | 0.99.0 |
References
ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P
rhn.redhat.com/errata/RHSA-2006-0602.html
secunia.com/advisories/21078
secunia.com/advisories/21107
secunia.com/advisories/21121
secunia.com/advisories/21204
secunia.com/advisories/21249
secunia.com/advisories/21467
secunia.com/advisories/21488
secunia.com/advisories/21598
secunia.com/advisories/22089
security.gentoo.org/glsa/glsa-200607-09.xml
securitytracker.com/id?1016532
support.avaya.com/elmodocs2/security/ASA-2006-197.htm
www.debian.org/security/2006/dsa-1127
www.mandriva.com/security/advisories?name=MDKSA-2006:128
www.novell.com/linux/security/advisories/2006_20_sr.html
www.osvdb.org/27366
www.osvdb.org/27367
www.osvdb.org/27368
www.securityfocus.com/archive/1/440576/100/0/threaded
www.securityfocus.com/bid/19051
www.vupen.com/english/advisories/2006/2850
www.wireshark.org/security/wnpa-sec-2006-01.html
exchange.xforce.ibmcloud.com/vulnerabilities/27827
issues.rpath.com/browse/RPL-512
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11350
Related
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.3 High
AI Score
Confidence
High
0.013 Low
EPSS
Percentile
85.8%