[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255861

 
 

909

 
 

199025

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2005-1431Date: (C)2005-05-03   (M)2023-12-22


The "record packet parsing" in GnuTLS 1.2 before 1.2.3 and 1.0 before 1.0.25 allows remote attackers to cause a denial of service, possibly related to padding bytes in gnutils_cipher.c.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1013861
BID-13477
SECUNIA-15193
OSVDB-16054
RHSA-2005:430
http://lists.gnupg.org/pipermail/gnutls-dev/2005-April/000858.html
gnutls-record-parsing-dos(20328)
oval:org.mitre.oval:def:9238

CPE    10
cpe:/a:gnu:gnutls:1.0.18
cpe:/a:gnu:gnutls:1.0.19
cpe:/a:gnu:gnutls:1.0.24
cpe:/a:gnu:gnutls:1.0.20
...

© SecPod Technologies