// For flags

CVE-2006-3630

 

Severity Score

7.5
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via the (1) NCP NMAS and (2) NDPS dissectors.

Múltiples errores de superación de límite (off-by-one) en Wireshark (también conocido como Ethereal) 0.9.7 hasta 0.99.0 tienen impacto y vectores de ataque remotos desconocidos a través de los analizadores (1) NCP NMAS y (2) NDPS.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2006-07-17 CVE Reserved
  • 2006-07-18 CVE Published
  • 2023-12-11 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-189: Numeric Errors
CAPEC
References (29)
URL Tag Source
http://securitytracker.com/id?1016532 Vdb Entry
http://support.avaya.com/elmodocs2/security/ASA-2006-197.htm X_refsource_confirm
http://www.osvdb.org/27366 Vdb Entry
http://www.osvdb.org/27367 Vdb Entry
http://www.osvdb.org/27368 Vdb Entry
http://www.securityfocus.com/archive/1/440576/100/0/threaded Mailing List
http://www.securityfocus.com/bid/19051 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/27827 Vdb Entry
https://issues.rpath.com/browse/RPL-512 X_refsource_confirm
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11350 Signature
URL Date SRC
URL Date SRC
http://www.wireshark.org/security/wnpa-sec-2006-01.html 2018-10-18
URL Date SRC
ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P 2018-10-18
http://rhn.redhat.com/errata/RHSA-2006-0602.html 2018-10-18
http://secunia.com/advisories/21078 2018-10-18
http://secunia.com/advisories/21107 2018-10-18
http://secunia.com/advisories/21121 2018-10-18
http://secunia.com/advisories/21204 2018-10-18
http://secunia.com/advisories/21249 2018-10-18
http://secunia.com/advisories/21467 2018-10-18
http://secunia.com/advisories/21488 2018-10-18
http://secunia.com/advisories/21598 2018-10-18
http://secunia.com/advisories/22089 2018-10-18
http://security.gentoo.org/glsa/glsa-200607-09.xml 2018-10-18
http://www.debian.org/security/2006/dsa-1127 2018-10-18
http://www.mandriva.com/security/advisories?name=MDKSA-2006:128 2018-10-18
http://www.novell.com/linux/security/advisories/2006_20_sr.html 2018-10-18
http://www.vupen.com/english/advisories/2006/2850 2018-10-18
https://access.redhat.com/security/cve/CVE-2006-3630 2006-08-16
https://bugzilla.redhat.com/show_bug.cgi?id=1618149 2006-08-16
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Wireshark
Search vendor "Wireshark"
 Wireshark
Search vendor "Wireshark" for product "Wireshark"
 0.9.7
Search vendor "Wireshark" for product "Wireshark" and version "0.9.7"
-
Affected
Wireshark
Search vendor "Wireshark"
 Wireshark
Search vendor "Wireshark" for product "Wireshark"
 0.9.8
Search vendor "Wireshark" for product "Wireshark" and version "0.9.8"
-
Affected
Wireshark
Search vendor "Wireshark"
 Wireshark
Search vendor "Wireshark" for product "Wireshark"
 0.99.0
Search vendor "Wireshark" for product "Wireshark" and version "0.99.0"
-
Affected