CVE-2007-6118
NONE EPSS 81.1%
Published Nov 23, 200718y ago · Modified Jun 16, 20262w ago
Published Nov 23, 2007 18y ago
Last Modified Jun 16, 2026 2w ago
Description
The MEGACO dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote attackers to cause a denial of service (long loop and resource consumption) via unknown vectors.
Threat Intelligence
EPSS Exploit Probability
81.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 12
| Vendor | Product | Version | Range |
|---|---|---|---|
| ethereal_group | ethereal | 0.9.14 | any |
| ethereal_group | ethereal | 0.9.15 | any |
| ethereal_group | ethereal | 0.9.16 | any |
| ethereal_group | ethereal | 0.99.0 | any |
| wireshark | wireshark | 0.99 | any |
| wireshark | wireshark | 0.99.0 | any |
| wireshark | wireshark | 0.99.1 | any |
| wireshark | wireshark | 0.99.2 | any |
| wireshark | wireshark | 0.99.3 | any |
| wireshark | wireshark | 0.99.4 | any |
| wireshark | wireshark | 0.99.5 | any |
| wireshark | wireshark | 0.99.6 | any |
References 28
- bugs.gentoo.org http://bugs.gentoo.org/show_bug.cgi?id=199958
- lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html
- secunia.com http://secunia.com/advisories/27777
- secunia.com http://secunia.com/advisories/27817
- secunia.com http://secunia.com/advisories/28197
- secunia.com http://secunia.com/advisories/28207
- secunia.com http://secunia.com/advisories/28288
- secunia.com http://secunia.com/advisories/28304
- secunia.com http://secunia.com/advisories/28325
- secunia.com http://secunia.com/advisories/28564
- secunia.com http://secunia.com/advisories/28583
- secunia.com http://secunia.com/advisories/29048
- security.gentoo.org http://security.gentoo.org/glsa/glsa-200712-23.xml
- securitytracker.com http://securitytracker.com/id?1018988
- wiki.rpath.com http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004
- debian.org http://www.debian.org/security/2007/dsa-1414
- mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2008:001
- mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2008:1
- redhat.com http://www.redhat.com/support/errata/RHSA-2008-0058.html
- redhat.com http://www.redhat.com/support/errata/RHSA-2008-0059.html
- securityfocus.com http://www.securityfocus.com/archive/1/485792/100/0/threaded
- securityfocus.com http://www.securityfocus.com/bid/26532
- vupen.com http://www.vupen.com/english/advisories/2007/3956
- wireshark.org http://www.wireshark.org/security/wnpa-sec-2007-03.html
- issues.rpath.com https://issues.rpath.com/browse/RPL-1975
- oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10659
- redhat.com https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00606.html
- redhat.com https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00712.html
Remediation
- securityfocus.com http://www.securityfocus.com/bid/26532
- wireshark.org http://www.wireshark.org/security/wnpa-sec-2007-03.html