Unrated severityNVD Advisory· Published Mar 8, 2005· Updated Apr 16, 2026

CVE-2005-0699

Description

Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via RADIUS authentication packets with large length values.

Affected products

Ethereal Group/Ethereal7 versions
cpe:2.3:a:ethereal_group:ethereal:0.10.3:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:ethereal_group:ethereal:0.10.3:*:*:*:*:*:*:*
- cpe:2.3:a:ethereal_group:ethereal:0.10.4:*:*:*:*:*:*:*
- cpe:2.3:a:ethereal_group:ethereal:0.10.5:*:*:*:*:*:*:*
- cpe:2.3:a:ethereal_group:ethereal:0.10.6:*:*:*:*:*:*:*
- cpe:2.3:a:ethereal_group:ethereal:0.10.7:*:*:*:*:*:*:*
- cpe:2.3:a:ethereal_group:ethereal:0.10.8:*:*:*:*:*:*:*
- cpe:2.3:a:ethereal_group:ethereal:0.10.9:*:*:*:*:*:*:*
Altlinux/Alt Linux2 versions
cpe:2.3:o:altlinux:alt_linux:compact_2.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:altlinux:alt_linux:compact_2.3:*:*:*:*:*:*:*
- cpe:2.3:o:altlinux:alt_linux:junior_2.3:*:*:*:*:*:*:*
Conectiva/Linux2 versions
cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:conectiva:linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:9.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux12 versions
cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*+ 11 more
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server_ia64:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server_ia64:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:4.0:*:advanced_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:4.0:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:4.0:*:workstation:*:*:*:*:*
Red Hat/Enterprise Linux Desktop2 versions
cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*
Red Hat/Linux Advanced Workstation2 versions
cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*
- cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.gentoo.org/glsa/glsa-200503-16.xmlnvdPatchVendor Advisory
www.redhat.com/support/errata/RHSA-2005-306.htmlnvdPatchVendor Advisory
www.ethereal.com/appnotes/enpa-sa-00018.htmlnvdExploitPatchVendor AdvisoryURL Repurposed
www.securityfocus.com/archive/1/392659nvdExploitVendor Advisory
www.securityfocus.com/bid/12759nvdExploitPatchVendor Advisory
marc.infonvd
marc.infonvd
security.lss.hr/en/index.phpnvd
www.mandriva.com/security/advisoriesnvd
www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00003.htmlnvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10147nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000