CVE-2004-0176
Last modified
CVE-2004-0176 is a vulnerability of currently unknown severity. Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) NetFlow, (2) IGAP, (3) EIGRP, (4) PGM, (5) IrDA, (6) BGP, (7) ISUP, or (8) TCAP dissectors.. EPSS estimates a 67.09% chance of exploitation in the next 30 days.
Description
Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) NetFlow, (2) IGAP, (3) EIGRP, (4) PGM, (5) IrDA, (6) BGP, (7) ISUP, or (8) TCAP dissectors.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ethereal Group | Ethereal | 0.8.13 |
| Ethereal Group | Ethereal | 0.8.14 |
| Ethereal Group | Ethereal | 0.8.18 |
| Ethereal Group | Ethereal | 0.8.19 |
| Ethereal Group | Ethereal | 0.9 |
| Ethereal Group | Ethereal | 0.9.1 |
| Ethereal Group | Ethereal | 0.9.2 |
| Ethereal Group | Ethereal | 0.9.3 |
| Ethereal Group | Ethereal | 0.9.4 |
| Ethereal Group | Ethereal | 0.9.5 |
| Ethereal Group | Ethereal | 0.9.6 |
| Ethereal Group | Ethereal | 0.9.7 |
| Ethereal Group | Ethereal | 0.9.8 |
| Ethereal Group | Ethereal | 0.9.9 |
| Ethereal Group | Ethereal | 0.9.10 |
| Ethereal Group | Ethereal | 0.9.11 |
| Ethereal Group | Ethereal | 0.9.12 |
| Ethereal Group | Ethereal | 0.9.13 |
| Ethereal Group | Ethereal | 0.9.14 |
| Ethereal Group | Ethereal | 0.9.15 |
| Ethereal Group | Ethereal | 0.9.16 |
| Ethereal Group | Ethereal | 0.10 |
| Ethereal Group | Ethereal | 0.10.1 |
| Ethereal Group | Ethereal | 0.10.2 |
References
- http://www.debian.org/security/2004/dsa-511Patch, Vendor Advisory
- http://www.ethereal.com/appnotes/enpa-sa-00013.htmlURL Repurposed
- http://www.kb.cert.org/vuls/id/119876US Government Resource
- http://www.kb.cert.org/vuls/id/125156US Government Resource
- http://www.kb.cert.org/vuls/id/433596US Government Resource
- http://www.kb.cert.org/vuls/id/591820US Government Resource
- http://www.kb.cert.org/vuls/id/644886US Government Resource
- http://www.kb.cert.org/vuls/id/659140US Government Resource
- http://www.kb.cert.org/vuls/id/740188US Government Resource
- http://www.kb.cert.org/vuls/id/864884US Government Resource
- http://www.kb.cert.org/vuls/id/931588US Government Resource
- http://www.debian.org/security/2004/dsa-511Patch, Vendor Advisory
- http://www.ethereal.com/appnotes/enpa-sa-00013.htmlURL Repurposed
- http://www.kb.cert.org/vuls/id/119876US Government Resource
- http://www.kb.cert.org/vuls/id/125156US Government Resource
- http://www.kb.cert.org/vuls/id/433596US Government Resource
- http://www.kb.cert.org/vuls/id/591820US Government Resource
- http://www.kb.cert.org/vuls/id/644886US Government Resource
- http://www.kb.cert.org/vuls/id/659140US Government Resource
- http://www.kb.cert.org/vuls/id/740188US Government Resource
- http://www.kb.cert.org/vuls/id/864884US Government Resource
- http://www.kb.cert.org/vuls/id/931588US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2004-0176?
How severe is CVE-2004-0176?
How do I fix CVE-2004-0176?
Are you affected by CVE-2004-0176?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST