CVE-2006-4805

Published: Oct 27, 2006Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a zero length value when it is decoded.

Affected (9)

Products: Wireshark: Wireshark

1 product

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Wireshark Wireshark	Version 0.10.13
Wireshark Wireshark	Version 0.10.4
Wireshark Wireshark	Version 0.10
Wireshark Wireshark	Version 0.9.10
Wireshark Wireshark	Version 0.9.8
Wireshark Wireshark	Version 0.99.1
Wireshark Wireshark	Version 0.99.2
Wireshark Wireshark	Version 0.99.3
Wireshark Wireshark	Version 0.99

References (46)

ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P (unsafe URL)

Source: secalert@redhat.com

http://secunia.com/advisories/22590

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/22659

Source: secalert@redhat.com

http://secunia.com/advisories/22672

Source: secalert@redhat.com

http://secunia.com/advisories/22692

Source: secalert@redhat.com

http://secunia.com/advisories/22797

Source: secalert@redhat.com

http://secunia.com/advisories/22841

Source: secalert@redhat.com

http://secunia.com/advisories/22929

Source: secalert@redhat.com

http://secunia.com/advisories/23096

Source: secalert@redhat.com

http://securitytracker.com/id?1017129

Source: secalert@redhat.com

http://support.avaya.com/elmodocs2/security/ASA-2006-255.htm

Source: secalert@redhat.com

http://www.kb.cert.org/vuls/id/723736

Source: secalert@redhat.com

US Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2006:195

Source: secalert@redhat.com

http://www.novell.com/linux/security/advisories/2006_65_ethereal.html

Source: secalert@redhat.com

http://www.redhat.com/support/errata/RHSA-2006-0726.html

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/450307/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/20762

Source: secalert@redhat.com

http://www.us.debian.org/security/2006/dsa-1201

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2006/4220

Source: secalert@redhat.com

http://www.wireshark.org/security/wnpa-sec-2006-03.html

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/29843

Source: secalert@redhat.com

https://issues.rpath.com/browse/RPL-746

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10199

Source: secalert@redhat.com

ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22590

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/22659

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22672

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22692

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22797

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22841

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22929

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/23096

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1017129

Source: af854a3a-2127-422b-91ae-364da2661108

http://support.avaya.com/elmodocs2/security/ASA-2006-255.htm

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/723736

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.mandriva.com/security/advisories?name=MDKSA-2006:195

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2006_65_ethereal.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2006-0726.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/450307/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/20762

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.us.debian.org/security/2006/dsa-1201

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/4220

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.wireshark.org/security/wnpa-sec-2006-03.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/29843

Source: af854a3a-2127-422b-91ae-364da2661108

https://issues.rpath.com/browse/RPL-746

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10199

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.