CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-3184

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1360%
EPSS Percentile16.03th
Published2005年10月20日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow vulnerability in the unicode_to_bytes in the Service Location Protocol (srvloc) dissector (packet-srvloc.c) in Ethereal allows remote attackers to execute arbitrary code via a srvloc packet with a modified length value.

Affected Platforms (CPE)

📦
Ethereal Group

Ethereal

<= 0.10.12

References & Advisories

🔗 http://secunia.com/advisories/17254
🔗 http://secunia.com/advisories/17286
🔗 http://secunia.com/advisories/17327
🔗 http://secunia.com/advisories/17377
🔗 http://secunia.com/advisories/17392
🔗 http://secunia.com/advisories/17480
🔗 http://securitytracker.com/id?1015082
🔗 http://www.ethereal.com/appnotes/enpa-sa-00021.html

関連する脆弱性情報

CVE-2003-043210.0

Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the (1) BGP, (2) WTP, (3) DNS,...

CVE-2004-050710.0

Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service and possi...

CVE-2003-043110.0

The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown con...

CVE-2006-193210.0

Off-by-one error in the OID printing routine in Ethereal 0.10.x up to 0.10.14 has unknown impact and remote attack vectors.