CVE-2005-1470

Ethereal - Denial of Service in TZSP MGCP ISUP SMB or Bittorrent Dissectors

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1470. PoCs published by Nicob.

AI-analyzed exploit summary This exploit targets a denial-of-service (DoS) vulnerability in Ethereal's SMB dissector (CVE-2005-1470) by sending a malformed SMB packet over UDP port 138. The payload triggers a segmentation fault in versions 0.9.0 to 0.10.10 due to improper handling in the dissect_ipc_state() function.

Description

Multiple unknown vulnerabilities in the (1) TZSP, (2) MGCP, (3) ISUP, (4) SMB, or (5) Bittorrent dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (segmentation fault) via unknown vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nicob · cdosmultiple

https://www.exploit-db.com/exploits/984

View Code ZIP pw:eip

This exploit targets a denial-of-service (DoS) vulnerability in Ethereal's SMB dissector (CVE-2005-1470) by sending a malformed SMB packet over UDP port 138. The payload triggers a segmentation fault in versions 0.9.0 to 0.10.10 due to improper handling in the dissect_ipc_state() function.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Ethereal <= 0.10.10

No auth needed

Prerequisites: Network access to target · UDP port 138 reachable

MITRE ATT&CK