CVE-2005-3651
iDEFENSE Security Advisory 2005-12-09.t
Severity Score
9.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets.
Remote exploitation of an input validation vulnerability in the OSPF protocol dissectors within Ethereal, as included in various vendors operating system distributions, could allow attackers to crash the vulnerable process or potentially execute arbitrary code. iDefense has confirmed the existence of this vulnerability in the ethereal-0.10.12 RPM from Red Hat Fedora Core 3. It is suspected that previous versions containing the OSPF dissector code are also vulnerable.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2005-11-18 CVE Reserved
- 2005-12-10 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (25)
| URL | Tag | Source |
|---|---|---|
| http://anonsvn.ethereal.com/viewcvs/viewcvs.py/trunk/epan/dissectors/packet-ospf.c | Url Repurposed | |
| http://secunia.com/advisories/17973 | Third Party Advisory | |
| http://secunia.com/advisories/18012 | Third Party Advisory | |
| http://secunia.com/advisories/18062 | Third Party Advisory | |
| http://secunia.com/advisories/18331 | Third Party Advisory | |
| http://secunia.com/advisories/18426 | Third Party Advisory | |
| http://secunia.com/advisories/18911 | Third Party Advisory | |
| http://secunia.com/advisories/19012 | Third Party Advisory | |
| http://secunia.com/advisories/19230 | Third Party Advisory | |
| http://securityreason.com/securityalert/247 | Third Party Advisory | |
| http://securitytracker.com/id?1015337 | Vdb Entry | |
| http://www.ethereal.com/appnotes/enpa-sa-00022.html | Url Repurposed | |
| http://www.vupen.com/english/advisories/2005/2830 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11286 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.idefense.com/application/poi/display?id=349&type=vulnerabilities | 2024-02-14 | |
| http://www.securityfocus.com/bid/15794 | 2024-02-14 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.7.7 Search vendor "Ethereal Group" for product "Ethereal" and version "0.7.7" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.8 Search vendor "Ethereal Group" for product "Ethereal" and version "0.8" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.8.5 Search vendor "Ethereal Group" for product "Ethereal" and version "0.8.5" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.8.13 Search vendor "Ethereal Group" for product "Ethereal" and version "0.8.13" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.8.14 Search vendor "Ethereal Group" for product "Ethereal" and version "0.8.14" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.8.15 Search vendor "Ethereal Group" for product "Ethereal" and version "0.8.15" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.8.18 Search vendor "Ethereal Group" for product "Ethereal" and version "0.8.18" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.8.19 Search vendor "Ethereal Group" for product "Ethereal" and version "0.8.19" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.1 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.1" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.2 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.2" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.3 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.3" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.4 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.4" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.5 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.5" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.6 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.6" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.7 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.7" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.8 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.8" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.9 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.9" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.10 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.10" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.11 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.11" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.12 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.12" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.13 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.13" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.14 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.14" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.15 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.15" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.9.16 Search vendor "Ethereal Group" for product "Ethereal" and version "0.9.16" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.1 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.1" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.2 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.2" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.3 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.3" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.4 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.4" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.5 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.5" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.6 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.6" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.7 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.7" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.8 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.8" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.9 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.9" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.10 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.10" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.11 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.11" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.12 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.12" | - |
Affected
| ||||||
| Ethereal Group Search vendor "Ethereal Group" | Ethereal Search vendor "Ethereal Group" for product "Ethereal" | 0.10.13 Search vendor "Ethereal Group" for product "Ethereal" and version "0.10.13" | - |
Affected
| ||||||