CVE-2007-6118

NONE EPSS 81.1%
Published Nov 23, 200718y ago · Modified Jun 16, 20262w ago
Find Similar
Published Nov 23, 2007 18y ago
Last Modified Jun 16, 2026 2w ago

Description

The MEGACO dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (long loop and resource consumption) via unknown vectors.

Threat Intelligence

EPSS Exploit Probability
81.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 12

VendorProductVersionRange
ethereal_groupethereal0.9.14any
ethereal_groupethereal0.9.15any
ethereal_groupethereal0.9.16any
ethereal_groupethereal0.99.0any
wiresharkwireshark0.99any
wiresharkwireshark0.99.0any
wiresharkwireshark0.99.1any
wiresharkwireshark0.99.2any
wiresharkwireshark0.99.3any
wiresharkwireshark0.99.4any
wiresharkwireshark0.99.5any
wiresharkwireshark0.99.6any

References 28

  • bugs.gentoo.org http://bugs.gentoo.org/show_bug.cgi?id=199958
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html
  • secunia.com http://secunia.com/advisories/27777
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/27817
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/28197
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/28207
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/28288
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/28304
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/28325
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/28564
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/28583
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/29048
    Vendor Advisory
  • security.gentoo.org http://security.gentoo.org/glsa/glsa-200712-23.xml
  • securitytracker.com http://securitytracker.com/id?1018988
  • wiki.rpath.com http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004
  • debian.org http://www.debian.org/security/2007/dsa-1414
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2008:001
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2008:1
  • redhat.com http://www.redhat.com/support/errata/RHSA-2008-0058.html
  • redhat.com http://www.redhat.com/support/errata/RHSA-2008-0059.html
  • securityfocus.com http://www.securityfocus.com/archive/1/485792/100/0/threaded
  • securityfocus.com http://www.securityfocus.com/bid/26532
    Patch
  • vupen.com http://www.vupen.com/english/advisories/2007/3956
  • wireshark.org http://www.wireshark.org/security/wnpa-sec-2007-03.html
    Patch
  • issues.rpath.com https://issues.rpath.com/browse/RPL-1975
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10659
  • redhat.com https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00606.html
  • redhat.com https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00712.html

Remediation