Vulnerability Description
Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to core dump.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ethereal Group | Ethereal | <= 0.9.4 |
References
- http://www.ethereal.com/appnotes/enpa-sa-00005.htmlVendor AdvisoryURL Repurposed
- http://www.securityfocus.com/bid/5167
- http://www.ethereal.com/appnotes/enpa-sa-00005.htmlVendor AdvisoryURL Repurposed
- http://www.securityfocus.com/bid/5167
FAQ
What is CVE-2002-0822?
CVE-2002-0822 is a vulnerability with a CVSS score of 7.5 (HIGH). Ethereal 0.9.4 and earlier allows remote attackers to cause a denial of service and possibly excecute arbitrary code via the (1) SOCKS, (2) RSVP, (3) AFS, or (4) LMP dissectors, which can be caused to...
How severe is CVE-2002-0822?
CVE-2002-0822 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0822?
Check the references section above for vendor advisories and patch information. Affected products include: Ethereal Group Ethereal.