CVE-2005-1468
First published: Thu May 05 2005(Updated: )
Multiple unknown vulnerabilities in the (1) WSP, (2) Q.931, (3) H.245, (4) KINK, (5) MGCP, (6) RPC, (7) SMBMailslot, and (8) SMB NETLOGON dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash) via unknown vectors that lead to a null dereference.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ethereal | =0.10.1 | |
| Ethereal | =0.8 | |
| Ethereal | =0.9.2 | |
| Ethereal | =0.9.6 | |
| Ethereal | =0.10.10 | |
| Ethereal | =0.9.5 | |
| Ethereal | =0.8.19 | |
| Ethereal | =0.10.2 | |
| Ethereal | =0.8.18 | |
| Ethereal | =0.9.14 | |
| Ethereal | =0.9.15 | |
| Ethereal | =0.9.10 | |
| Ethereal | =0.9.8 | |
| Ethereal | =0.10.3 | |
| Ethereal | =0.10.4 | |
| Ethereal | =0.10.7 | |
| Ethereal | =0.9.16 | |
| Ethereal | =0.8.13 | |
| Ethereal | =0.10.5 | |
| Ethereal | =0.8.15 | |
| Ethereal | =0.9.3 | |
| Ethereal | =0.10 | |
| Ethereal | =0.9.13 | |
| Ethereal | =0.9.9 | |
| Ethereal | =0.8.14 | |
| Ethereal | =0.9.11 | |
| Ethereal | =0.9.7 | |
| Ethereal | =0.9.4 | |
| Ethereal | =0.9.1 | |
| Ethereal | =0.10.6 | |
| Ethereal | =0.10.8 | |
| Ethereal | =0.10.9 | |
| Ethereal | =0.9 | |
| Ethereal | =0.9.12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.ethereal.com/appnotes/enpa-sa-00019.html
- http://www.ethereal.com/news/item_20050504_01.html
- http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00003.html
- http://www.redhat.com/support/errata/RHSA-2005-427.html
- http://www.securityfocus.com/bid/13504
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000963
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10049
Frequently Asked Questions
What is the severity of CVE-2005-1468?
CVE-2005-1468 is classified as a high severity vulnerability due to its potential to cause a denial of service through remote attacks.
How do I fix CVE-2005-1468?
To fix CVE-2005-1468, upgrade Ethereal to version 0.10.11 or later, where the vulnerabilities have been addressed.
What versions of Ethereal are affected by CVE-2005-1468?
CVE-2005-1468 affects multiple versions of Ethereal prior to 0.10.11, including versions 0.8 through 0.10.10.
What types of vulnerabilities are exploited in CVE-2005-1468?
CVE-2005-1468 exploits multiple dissectors in Ethereal, including WSP, Q.931, H.245, and others, leading to a null dereference.
Can CVE-2005-1468 lead to data leakage?
CVE-2005-1468 primarily leads to denial of service, but indirectly could allow for other vulnerabilities to be exploited if the system is compromised.
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/weakness
- agent/remedy
- agent/severity
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/nvd-index
- vendor/ethereal group
- canonical/ethereal
- version/ethereal/0.10.1
- version/ethereal/0.8
- version/ethereal/0.9.2
- version/ethereal/0.9.6
- version/ethereal/0.10.10
- version/ethereal/0.9.5
- version/ethereal/0.8.19
- version/ethereal/0.10.2
- version/ethereal/0.8.18
- version/ethereal/0.9.14
- version/ethereal/0.9.15
- version/ethereal/0.9.10
- version/ethereal/0.9.8
- version/ethereal/0.10.3
- version/ethereal/0.10.4
- version/ethereal/0.10.7
- version/ethereal/0.9.16
- version/ethereal/0.8.13
- version/ethereal/0.10.5
- version/ethereal/0.8.15
- version/ethereal/0.9.3
- version/ethereal/0.10
- version/ethereal/0.9.13
- version/ethereal/0.9.9
- version/ethereal/0.8.14
- version/ethereal/0.9.11
- version/ethereal/0.9.7
- version/ethereal/0.9.4
- version/ethereal/0.9.1
- version/ethereal/0.10.6
- version/ethereal/0.10.8
- version/ethereal/0.10.9
- version/ethereal/0.9
- version/ethereal/0.9.12