CVE-2007-6121
NONE EPSS 78.6%
Published Nov 23, 200718y ago ยท Modified Jun 16, 20262w ago
Published Nov 23, 2007 18y ago
Last Modified Jun 16, 2026 2w ago
Description
Wireshark (formerly Ethereal) 0.8.16 to 0.99.6 allows remote attackers to cause a denial of service (crash) via a malformed RPC Portmap packet.
Threat Intelligence
EPSS Exploit Probability
78.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-20 Improper Input Validation Validation
Affected Products 53
| Vendor | Product | Version | Range |
|---|---|---|---|
| ethereal_group | ethereal | 0.8.16 | any |
| ethereal_group | ethereal | 0.8.17 | any |
| ethereal_group | ethereal | 0.8.17a | any |
| ethereal_group | ethereal | 0.8.18 | any |
| ethereal_group | ethereal | 0.8.19 | any |
| ethereal_group | ethereal | 0.8.20 | any |
| ethereal_group | ethereal | 0.9 | any |
| ethereal_group | ethereal | 0.9.0 | any |
| ethereal_group | ethereal | 0.9.1 | any |
| ethereal_group | ethereal | 0.9.2 | any |
| ethereal_group | ethereal | 0.9.3 | any |
| ethereal_group | ethereal | 0.9.4 | any |
| ethereal_group | ethereal | 0.9.5 | any |
| ethereal_group | ethereal | 0.9.6 | any |
| ethereal_group | ethereal | 0.9.7 | any |
| ethereal_group | ethereal | 0.9.8 | any |
| ethereal_group | ethereal | 0.9.9 | any |
| ethereal_group | ethereal | 0.9.10 | any |
| ethereal_group | ethereal | 0.9.11 | any |
| ethereal_group | ethereal | 0.9.12 | any |
| ethereal_group | ethereal | 0.9.13 | any |
| ethereal_group | ethereal | 0.9.14 | any |
| ethereal_group | ethereal | 0.9.15 | any |
| ethereal_group | ethereal | 0.9.16 | any |
| ethereal_group | ethereal | 0.10 | any |
| ethereal_group | ethereal | 0.10.0 | any |
| ethereal_group | ethereal | 0.10.0a | any |
| ethereal_group | ethereal | 0.10.1 | any |
| ethereal_group | ethereal | 0.10.2 | any |
| ethereal_group | ethereal | 0.10.3 | any |
| ethereal_group | ethereal | 0.10.4 | any |
| ethereal_group | ethereal | 0.10.5 | any |
| ethereal_group | ethereal | 0.10.6 | any |
| ethereal_group | ethereal | 0.10.7 | any |
| ethereal_group | ethereal | 0.10.8 | any |
| ethereal_group | ethereal | 0.10.9 | any |
| ethereal_group | ethereal | 0.10.10 | any |
| ethereal_group | ethereal | 0.10.11 | any |
| ethereal_group | ethereal | 0.10.12 | any |
| ethereal_group | ethereal | 0.10.13 | any |
| ethereal_group | ethereal | 0.10.14 | any |
| ethereal_group | ethereal | 0.99.0 | any |
| wireshark | wireshark | 0.8.16 | any |
| wireshark | wireshark | 0.9.8 | any |
| wireshark | wireshark | 0.9.10 | any |
| wireshark | wireshark | 0.99 | any |
| wireshark | wireshark | 0.99.0 | any |
| wireshark | wireshark | 0.99.1 | any |
| wireshark | wireshark | 0.99.2 | any |
| wireshark | wireshark | 0.99.3 | any |
| wireshark | wireshark | 0.99.4 | any |
| wireshark | wireshark | 0.99.5 | any |
| wireshark | wireshark | 0.99.6 | any |
References 28
- bugs.gentoo.org http://bugs.gentoo.org/show_bug.cgi?id=199958
- lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html
- secunia.com http://secunia.com/advisories/27777
- secunia.com http://secunia.com/advisories/27817
- secunia.com http://secunia.com/advisories/28197
- secunia.com http://secunia.com/advisories/28207
- secunia.com http://secunia.com/advisories/28288
- secunia.com http://secunia.com/advisories/28304
- secunia.com http://secunia.com/advisories/28325
- secunia.com http://secunia.com/advisories/28564
- secunia.com http://secunia.com/advisories/28583
- secunia.com http://secunia.com/advisories/29048
- security.gentoo.org http://security.gentoo.org/glsa/glsa-200712-23.xml
- securitytracker.com http://securitytracker.com/id?1018988
- wiki.rpath.com http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0004
- debian.org http://www.debian.org/security/2007/dsa-1414
- mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2008:001
- mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2008:1
- redhat.com http://www.redhat.com/support/errata/RHSA-2008-0058.html
- redhat.com http://www.redhat.com/support/errata/RHSA-2008-0059.html
- securityfocus.com http://www.securityfocus.com/archive/1/485792/100/0/threaded
- securityfocus.com http://www.securityfocus.com/bid/26532
- vupen.com http://www.vupen.com/english/advisories/2007/3956
- wireshark.org http://www.wireshark.org/security/wnpa-sec-2007-03.html
- issues.rpath.com https://issues.rpath.com/browse/RPL-1975
- oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11374
- redhat.com https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00606.html
- redhat.com https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00712.html
Remediation
- securityfocus.com http://www.securityfocus.com/bid/26532
- wireshark.org http://www.wireshark.org/security/wnpa-sec-2007-03.html