NVD Vulnerability Detail

CVE-2005-2367

Summary	Format string vulnerability in the proto_item_set_text function in Ethereal 0.9.4 through 0.10.11, as used in multiple dissectors, allows remote attackers to write to arbitrary memory locations and gain privileges via a crafted AFP packet.
Publication Date	Aug. 10, 2005, 1 p.m.
Registration Date	Jan. 29, 2021, 5:58 p.m.
Last Update	Feb. 14, 2024, 10:17 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:ethereal_group:ethereal:0.10.1:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.6:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.10:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.5:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.2:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.14:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.15:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.10:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.8:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.3:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.4:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.7:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.16:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.11:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.5:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.0:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.13:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.9:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.11:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.7:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.4:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.6:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.8:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.9:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.12:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://www.idefense.com/application/poi/display?id=289&type=vulnerabilities	IDEFENSE	Vendor Advisory
2	http://www.ethereal.com/appnotes/enpa-sa-00020.html	CONFIRM	Patch URL Repurposed
3	http://www.gentoo.org/security/en/glsa/glsa-200507-27.xml	GENTOO	Patch
4	http://www.mandriva.com/security/advisories?name=MDKSA-2005:131	MANDRAKE	Patch Vendor Advisory
5	http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00003.html	FEDORA
6	http://www.redhat.com/support/errata/RHSA-2005-687.html	REDHAT
7	http://www.securityfocus.com/bid/14399	BID
8	http://www.debian.org/security/2005/dsa-853	DEBIAN
9	http://secunia.com/advisories/16225/	SECUNIA
10	http://secunia.com/advisories/17102	SECUNIA
11	http://www.novell.com/linux/security/advisories/2005_19_sr.html	SUSE
12	http://www.novell.com/linux/security/advisories/2005_18_sr.html	SUSE
13	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10765	OVAL

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:ethereal_group:ethereal:0.10.1:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.6:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.10:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.5:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.2:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.14:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.15:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.10:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.8:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.3:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.4:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.7:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.16:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.11:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.5:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.0:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.13:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.9:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.11:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.7:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.4:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.6:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.8:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.10.9:::::::*
cpe:2.3:a:ethereal_group:ethereal:0.9.12:::::::*