Описание
Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers.
Ссылки
- PatchVendor Advisory
- PatchVendor AdvisoryURL Repurposed
- ExploitPatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor AdvisoryURL Repurposed
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ethereal_group:ethereal:0.8.18:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.5:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.6:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.7:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:ethereal_group:ethereal:0.9.9:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.047
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
redhat
больше 22 лет назад
Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers.
debian
больше 22 лет назад
Format string vulnerability in packet-socks.c of the SOCKS dissector f ...
github
около 3 лет назад
Format string vulnerability in packet-socks.c of the SOCKS dissector for Ethereal 0.8.7 through 0.9.9 allows remote attackers to execute arbitrary code via SOCKS packets containing format string specifiers.
EPSS
Процентиль: 89%
0.047
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other