Back to search
CVE-2004-0365
Published: Mar 25, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a malformed RADIUS packet that triggers a null dereference.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
GLSA-200403-07
vendor-advisory
x_refsource_GENTOO
RHSA-2004:137
vendor-advisory
x_refsource_REDHAT
RHSA-2004:136
vendor-advisory
x_refsource_REDHAT
11185
third-party-advisory
x_refsource_SECUNIA
20040329 LNSA-#2004-0007: Multiple security problems in Ethereal
mailing-list
x_refsource_BUGTRAQ
CLA-2004:835
vendor-advisory
x_refsource_CONECTIVA
oval:org.mitre.oval:def:891
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:9196
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:879
vdb-entry
signature
x_refsource_OVAL
http://www.ethereal.com/appnotes/enpa-sa-00013.html
x_refsource_CONFIRM
20040416 [OpenPKG-SA-2004.015] OpenPKG Security Advisory (ethereal)
mailing-list
x_refsource_BUGTRAQ
VU#124454
third-party-advisory
x_refsource_CERT-VN
[ethereal-dev] 20040318 ethereal radius dissector vulnerability
mailing-list
x_refsource_MLIST
ethereal-radius-dos(15571)
vdb-entry
x_refsource_XF
MDKSA-2004:024
vendor-advisory
x_refsource_MANDRAKE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now