Vulnerability Details CVE-2003-0357
Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.144
EPSS Ranking 94.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://rhn.redhat.com/errata/RHSA-2003-077.html
- http://www.debian.org/security/2003/dsa-313
- http://www.ethereal.com/appnotes/enpa-sa-00009.html
- http://www.kb.cert.org/vuls/id/232164
- http://www.kb.cert.org/vuls/id/361700
- http://www.mandriva.com/security/advisories?name=MDKSA-2003:067
- http://www.securityfocus.com/bid/7494
- http://www.securityfocus.com/bid/7495
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A73
- http://rhn.redhat.com/errata/RHSA-2003-077.html
- http://www.debian.org/security/2003/dsa-313
- http://www.ethereal.com/appnotes/enpa-sa-00009.html
- http://www.kb.cert.org/vuls/id/232164
- http://www.kb.cert.org/vuls/id/361700
- http://www.mandriva.com/security/advisories?name=MDKSA-2003:067
- http://www.securityfocus.com/bid/7494
- http://www.securityfocus.com/bid/7495
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A73
Products affected by CVE-2003-0357
-
cpe:2.3:a:ethereal_group:ethereal:*