Strix
26.1K

CVE-2005-2627

UnknownEPSS 4.73%

Last modified

CVE-2005-2627 is a vulnerability of currently unknown severity. Multiple integer underflows in Kismet before 2005-08-R1 allow remote attackers to execute arbitrary code via (1) kernel headers in a pcap file or (2) data frame dissection, which leads to heap-based buffer overflows.. EPSS estimates a 4.73% chance of exploitation in the next 30 days.

Description

Multiple integer underflows in Kismet before 2005-08-R1 allow remote attackers to execute arbitrary code via (1) kernel headers in a pcap file or (2) data frame dissection, which leads to heap-based buffer overflows.

Metrics

EPSS Probability
4.73%

90.7th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
KismetKismet2.4.5
KismetKismet2.4.6
KismetKismet2.6.0
KismetKismet2.8.0
KismetKismet2.8.0a
KismetKismet2.8.1
KismetKismet2004-02_r1
KismetKismet2004-04_r1
KismetKismet2004-04_r1a
KismetKismet2004-10_r1
KismetKismet2005-01_r1
KismetKismet2005-04_r1
KismetKismet2005-06_r1
KismetKismet2005-07_bsd
KismetKismet2005-07_r1
KismetKismet2005-07_r1a

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2005-2627?
Multiple integer underflows in Kismet before 2005-08-R1 allow remote attackers to execute arbitrary code via (1) kernel headers in a pcap file or (2) data frame dissection, which leads to heap-based buffer overflows.
How severe is CVE-2005-2627?
Severity scoring for CVE-2005-2627 is pending analysis. The EPSS model estimates a 4.73% probability of exploitation in the next 30 days.
How do I fix CVE-2005-2627?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2005-2627?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST